

JJ-flM 

A1 > I 4 , ^-il \ II i.-|Ki.'j'l L-flJ^XJ 


jj-at .. AllL-ajla-all Ac»j_ujj 1—j j>^C. 4_jl 4_ic. (JLsj La J-Sl J 1 ^* r - _3 

-_j---%.’ij LlLIILj Ljjl£jivj ^^-3 (jjUJjJI j-j^atmll ^^-A AllLajla-aSI 4_i3 di^u^ai 

LjjjI _LU^. ^_ _Iskj 1_isul^a 

jLLijlJ ^-jo)J j 4 -L^>SI C—lSIjJ (_ 5 -^J A. LjAa.SI 4 jjlill k_nlLa)l JjJaJj jl_AAjl £_AJ 

4 j£I juJI 4_jfL_Aill dlVl a^sjVI (JL^-a <^-3 ejl^J A1 iIa_^.I (j-a AjV (jL^ 4_LaSl*JI (AjI£j_ioII 

.. Cj1£jLII <>AA £-j^>3 (jAJ 4 j^Luj^UIj Ig-La 
.1^.1 £-a 4-SLLaxJI Cll3_jjaij^)£jLa a£jjLS ^joajjil ^-jilSI Jj-^aljJ _j m j (JlLall (Jaa .a ^1x3 
I gg M 4_i1aI 'oj -ill 4 i t>i3 <Jj- 2 k (jisl—Iillj LjjaSLa 4_ljA ^_3 l gr.j^)3 

jli (JjtLaSLj LjJajl ^JLlj ^L^-LI ^SIj ]j-«l L-uijjJ (J-alx-a ^3 AASjjoijjjfLLa 

La llj AAl£>iil ^)j£l 4_u|j ; La lASLgjI ^_3 i. iii ■ A3 aA^S LSjJa-a 4 _i9jIa CllLall^a *W 
LjSjIa CllLlLaxJI ^»Lalllj AC-LoJI ^)I.1 a ^g_lc. CllLall^-a J)\ JUC-VI ^jJC- ^3 L*_jAaj 


^3 4 -a-vll ClljjjjVI Ajlj3 A^s.1 lAij LiAj L£-a-aj LL^-ujj Lj^kj-a (J^JI (jl£ IaS 

. i_fijSlSLSI (JsL 4 _uxa 1I i_flljiaVl (jJJ Jj-^aljlSI CllLLaC- ^»Lajl 

^jILa <_jL 1 jJaj' 4_jl 4 _j3Ls IjjojIj ^-Laai IS ^jILa L_lL 4_j| 4_j3La JjAaSl (-lujjjVI (j^S 

... Jlall IAjj LAj ( x_ia^1S 

JA ?? JLsJ JjjoiJ (Ja ??? t—lSlj-a LI JA .. Ac. Loll jlXa ^glc. 4 Si i jjI 


!!! Ig-La jj'^ll jjjLSIj ??? CjLLjSI sAA ASjjuj A-lAj 
L ijj^ji.i 4 _jj.i 2 >.'.) La LW^^^ Ij^A^IuiaSI (JjAC. ^glj ^111 V A 3 4 Jluil 

^glllSL J AlljjjjVI ^ jujJJ^SI IAj.A ‘ ^a.v“ i, Vq 4 djlj ^^iSlj AjULaSI ^j-a -jiaJU 
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-IxU-ujJ 


(j] <lila dUaa^J 4_La ^ajj ^jLilul jwi-n'i (jl jl .. a_y a Ig \j«aVi 4i»Iui 

.. ig_i Aijjai (jx 

(j—a t-^g -juj LgjV (jjj-ii5! ^^-3 LxSj LAjj^I (j—a .d^l ajl u-n .3-3 

.. ^)_iiJl ^_gJc- lg_iJajju jl lA-liaj j)l 4_ILa. 4_*_ulaJ 

^—jJa-al l" i_a.j oj >>i-Nj LaLjIs L-a Ijj 4_SUfiaJl ^g_3 In >Vi V ^)jl judJl 0.1A J_£ 

... 4 allLa 4 L] ^ 2 a A aa i\ 4 LjiaJl ^_J1 Jl _joj j a^_jj£jl jjg. Coll 4 j^A a^a 

(jjjjjj i-jLa-x^al (jC- IjLa ? 4_jjj,j < s'mJl 4fLiLall j)i jjjkaJl j).) / ' 3aL >.mil jjX. IjL-a 

? A^jjJall aAA Jjjia j)C. (j-a ^agliLLalx-a (jjLllj Jl^j-aLM 

^g_1c. lj.ala .1 4_jLa^Jl 4 _a 1£ d)l.ljj ■‘L-jLaaLl ^c-aj_u ^a-uU L-a Id JjJJaLall 1.1A (j—a 

... C-L-jjjjV' ^]I_C- j_A ^j_OS-a ^aJI—C-j £._ujlj (Jl_^a ^_3 lg^al.l_3l d±_UJj ^Ja_ua]l 

Jj_juj ^ il_ajlj dl ^3 Ijj JjLlllj 1_jl J_A : IdA 4_uiSU ^j_iaJ (_£d51 Jlj_uill jj_£] 

? cP'-jliJj *jtaaJI 

Peter dlLj_dll (j_*al j-id. u_)I_aJ L-a J daSL Jlj-uJl IdA ^_lc- v_J_i^.i jj 

^g. aIIj (jxj-all di^jll jl^aJl j JU 4_jl 4_u£ (_£dJ (_^3 4j djj3 i" nay NOrtOPl 
4_3jiJl 4-jjJ ^^3 ^ dajj jl_g_a. jA JJikYlj 4 £jjoA] ^iaLda (_£l (j-a %100 4_iuUJ 

( . dujjjY 1 ^^ic. Idlgj dLda V 4i£jj 

^gJlavj aj j^ll dll£j_joi]l dldj (J_liaLa]l liA jj-a ^ ^ JdkYl ^1 4_a.LaJl ^ J_i3 L-a£j 
1 g jlc- <_\_J jl ( _ S ^J 4 K> ! ii^ll a^A J^J Jf^ (jc- diaJlj 4_u>lill ojj* t^a]' 


_i ^g-ajaiJ La i_aLLiS.1 ^aJ l'.'.via. %95 (j-il ^Alida (j^J 

ddaijisvi diidLi VPN ( Virtual Private Networking ) 

4_i^aLkJl 
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: VPN J! 21 

^_3 L^J V Aj-jJajjjal CjI£±joi ciiKj <>aa <l_ijj£ ( _ s -lc. cJ-^} ^-uiVI 

I_Ajj£Ij LjLal d)l£j_ui]l ^ lj_jl j!i£L£ A_ 2 lj (J-a£l ^^Jc. ^ £ .'~>'j (_£A^a ‘-^-■ 1 £—« ^ & *^\j 

cr^-j 

.. LalAalLuol 

A i > >ijja3V I sAA (J } ^gjjAa. ^c-Ia Aj 2 lj (j-° Aiyla A lAajj^s' CAl^jAl lgjj£ la-ila 
(_^l ^2 1 Aali jud<aj jjAl_a* CliSjll (_)£ 1 Ini, n > >i *i q jSLi (jl ^c-IaII Ia^J AjV .. 
a|j! (j-a J£] A.u-rti'V.H Qjaj^\ LajIa Lgjl Cl 1 liA 4_jjjj£u*JI <£j_ulll dul£ lAAj 4-laaJ 

Ag^Jl (j-a (Jjilaj ^)-aill\ 


... 4_1 la.uil'j ^2 

1 ^ i \\ i L Q jiajj A i'ij^*nll aK\ l'q\\ lg jgiaj ^g_A A j xs-> jjilsV I CAllxCllI <>AA 

.. CllLa_ji*-a]l ^ ja \ ^glc. JaliaJjj All lj Lilli Jij 



Remote Office/Branch Office (ROBO) 
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V CLliLuiill J^ju i Li5> 3-1 

Lill .lie. LLJs i__iajjll fj -a JjV 4-jjkiajji3V I (J-aC. 4 j]1 ^3 ^-iLioij ^gja. 

.. 4 _jI^JI ^g_3 dilLi_kill q _a 1 kjic. ^_n \\ a £,j _kill (J 

.. 1 g 'la 1 'lag 1 La ^g_ll (Jjj-LajLoi (j-LS 4.411 i. S k^ij ^3 jj_li£ L^ 

JLil j ciLjjijVl (3i>^ a u-^ L^uj-all LiLLI ^jL ^ j_uLll ^ 1<~- ^ q-sj V Ls 

i_fljLall ^^3 4.'ij..1.x^i ( _ 5 -ll Lia ^4 ,','\l t^Lujjj ^j]| LILujjII (J1 Lai I gj-ll x a ^g_lc. 

CSjLaj ajj » ..k^3 4j>L ^Jl J>=Lj AjjjII qC- ^JLaJI j-a J-^LM 

^alL .. JL'i mall jJbj ^aLH t-ijLall .lie- 1 g» jaV^ ^Lj 4_Lijjia 4l)La_ji*-a ^^Lc. 

4_iiaC- ^^3 ^C-LujJj LgLai 4_iiaC. (Jgjaii C.'.naj ajj» k^i ^LuLl ^gll LiL^ll a Lb ~jxa3J 

... 1_ jJ\ J_iill £j>_J 

Li3j£.La LI ojl kn-\ll LLlSj LLLa 4Jiai jic. ■‘LiLa^latall ^ajaJl jl JjjjJall a Lb (jLl 
1 _jj_l ^Lj 4_ilLia '(^-33 1 5 ^g-S aj-ia.V 1 1 g'lLia a ^g_ll Ja^ai (jlj .IjV <LaLaJI (jl 

( Routers ) Lu-LL^W ^illii ciLyi >>ia ^j-a <jjLli 4^jH ^j-a aL&a.i 

^gJc. killLj 1-XaLta LbjLuial ^LajJlj CllLnaJI allA ~j uiii: jL^aJI ILa ^ jLj 1 “ j***- 
^j-a (Jil Laja. (JL jLL 1 ‘ ua 4 4J*a Lijillj LliLiaH "L-$-LVI 4j Lb^Sjl CllLajiata 
jjli LHj JiiLuiall JUC. ^gJbj ej-^L 1 1 jfiL-k a ^gJl J k^i"' ^gLa. Lais ej-23 1 5 jl 

e- 

... -Jaj A -ajaJl aj-A 

LajL LijLajla-all ajLoiaJI CllLLaC- i.“vW*< ^ ^Lc. (JSjolJ ALujSix 1' ^LLoll AjjoiilL 

... a^a.Vl a Lb Aa.1 Jiaxl) La Lj 4jt3j!la 1 g iLlj 
? 4 1 k >1 1jj3L[ 1 4LjjHj Lj jlaJl Lij^jLjaJl 4^ n'k ‘11 ^4 ( 3 >)^ ta 1 _jLl 
CllLajIa-aJl (jLi ^^3 A±j~*a jj-saaJl cs - ^ - LjLaaJlj (j-aVl ^aj^La ijUJ La 

CjI _j Lilli j 


V A_Lual^^l LSLulll CjULuil AjIaa ^jj l3u& 4 “ 1 

Cll al La Lj 1 g ag3 (..'» jk^ai C.',Lia.J IAjLLLj a^Lc- ^Lc- (JLjolJ CllLLllI LiLaa. ^Li 
(jjju Lst-jJaj Lj LLa.1 (_g-s£j V CllLajia-all jlLJlh ^."la. Ljail ••• I^LSjajj 
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jl A_SJjiaJ IAj_uo£ (j_£-aJ ^g-llllj _jji_Aull]l (j_x> aj_jj£ £-Jj_jl Aj_2lj jl_UC. V' 

\f. Lglu'j <_ijLaJjVI AliLsUaJI ^li^l IAs.I.1jjI LiA A_fLaVl jli£l aj (_£^ki_J 

jjl£ ... AlLaV I (j-a JA&]I IAjjC-j l g jl a. x -^>' (j-a A_a^ajj]l Aiall <3 jjuiJ 

^--aV ^a-ujl AIiIAj Sj-iA ( “--ll^J-aa (j-a S.l£j-aj A_)j3 CllLiajjIji. ^I_ul (j-a LajIa AjV 
... A 1 i, >ijjj3j/' Alll^JjoJI isAA ^glc. (J-aJlil A-lJ-.ba A Wa - ^ jji-Iull ^allc. 

La£ j n<; & \ jjjj IgJLujjl ^aJJ ^gJiS! AllLa_ji*-a]l j! f^Aj (_gj^l A_l£_uLa LiA 

jj jjj ^LlaJjjuAj IgJLujjj jaJ_j ajjj ^_1\ 1 gxu >jjflj ^j_j Isa uua LjSjC- 

Aljl-aji*-a]l aAA ^LjjJa L-U-uU A3 La-a A-ajl*-a]lj A^Jjatll Ajt-nJa ^_Ie Axuaj o A Asia 
aA^J A Lid jg^aJI A^j jug]' j_a£. j' y~'<~-V I q±C- ^g-3 li*_ubj IaI 1 g ixi a aI q**i > >iV I ^JlC-j 
(J-^ -Li-]l s ..l>Ij]I (j-a jjlS IaI lglix-iila ^glc. Ig^pu ^»A*J A y n~i Ig ag3 ^gic. ^ajpjl 

AiiaAS La aAAj All3j]l (jjoflj ^g3 (j-alj ^aluij ^ la..aj 

■LjjLa^LtAii ^jaJi (JLjjjL (jl a^j-lii caa Ainajisi v“n*\ ^ TunnelinQ ) 

A_jjlaJI AjjJaSI (jl *■" 1 j*s ) ojS-uia (jj^J (_gj^.l AjjJa (JjklA ^gJJ A_iaIc. AjjJa ^3 
(J_^j IA g Jj .. AJUaj-joixLI a£j_juoSI (_^aJ A ^jgQ* (jj_£j A_jjLajl*-a]l Ajj_laSI ^g-lc. 

.. AjjLaji*-all ^jpJI aAA e?.lj3 A!£. ui* 


: 4_LualjjSVl A£j^oiII CjUjLa 5~ 1 

(Jj^aaJI La^Jjl (jjJjujLujI (jjjj£-a (j-a A_uAaljj3V I A IiUjALI (jj£jj ale. (J£joiJ 

.. ( Gateway ) ju^yi ^ u^jiLj ( Client) 


: ( Gateway ) Ji^Vl ^Ijj ciiUaj - 
0 Aj_ 2 l ^0 ( Software& Hardware ) c ^ 1 

. a£jjL]I J)1 a ^3 

oA^.lj]l A^j_joi]I oj-^J^.1 ( _ s -iilj A iL^-aII Cjl^SlI Clll£j_uiSI a lax ^ ^^-3 
^)_n».-i Igj A-k^aLk A-uAaljisI A^Jjoi A jla.A£ jjJu (JiUj ( LAN ) (j^i» j\l Ig >>i»-U 
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l_£_jl£-alj Jl jl^j l_g_j ^a-1 j A£j will oA-gJ 4_jlgj]lj 4_IaSj 

ciiij_ja jAki joiIj a_3lIj]i diijii ^g -2 ( Client) J j^ r - (j—a ji^i —j jl -i 
Hardware ) A-lL-ssII Jjj_n«a5iJI Clllj_j£-a ^Jc- A«a!i*j ^glillj 6CAxlLa 

.. Jl_ x^i'A I 4xj_ joj j ^ 

ijljlj djl_iak.^l_j^all (. I Inr. Ij '—.iS ^al_g_«a]l AjAsJIj ^al—lsJilj Jl » I 4 _j|^j ^ajjll 
^gJI djl_A_ji*-a]l JLi^ajlj (Jl x ^«*'V I 4 _jI^j Ajij Jl 1 Iaj Aju Cl]lj_jil]l 

<jl*J <-a£-a A iLaxJ ^jjl) JL^sijJ I <jl_jJ (jl l-a£i •. A£lJjuaSI ( _ 5 -lc- A.^.l^.j^all <■£.., -^..lI 

AjAAa Ah i^JLujji JjS ( Encryption ) cj bUJI jjq >Vn 4_ilaC. ( _gAj 

( Decryption ) 


• • 1 g *Q^\**Uxll Xic- 


: ( Client ) Jj-aail t-JjUaj - 

^ji AiLiAai ji.i ^i-g-o (j>iVi ) i—^ Client) j_ia*ji jL^^Ji 

-iJ—sVl (_£jJ ui-a ^g If- aA j uall ^g_SI JjkA-II ^Jjl_k-saj f l LaC-lj Sj A_jl A ]j 

.. (j-LaAkH mail 

jA Jj-aaJI jjl jU&V I jjjju IjAkl t-a Ijj Ajjjj >>ill Jallill (_jkx*J ^)3jJ (j-a AjV 
AjLi^al CllVl-ai^.1 (j-a jAaJI Akl t--JA.j j}->'i.all lAA (j-a3 jjjSjia jjJJ Jj^ajll ■‘talav 
J_kj Aii L-a-a juaal: CliLiLa] Lg-Laa. ^Jia. jl CllLjaijjjjiu AJ_*jj^a]l CllLiLall qs -i »j 
(_5 j_ 3 Ajl_ujjjjj3 ^iLSua -ij-?kj (j—a A^ilill (_gjjj_iAa]l (j_* jjl_£ IaJ a£j /ill jjL-alj 
jIa^. j)X. g.lj»'l mV' (j-^-aJ y Lkajlj aVI <£j_jolSI j)-a CjlibA-k.i.l' jkLj AliAx-aj 
iill_A jjli A^jAall sAA ^_g3 A }-t Jjuaj iJAj Cl jAslj ^ j] ^ Jjtallj aAj A^till isj^ 

••• W^ J C> 

^ _ic« f.jjJa]l LS ilj] <i^Laj«JI Ljajij JU-allVI Ajl_JJ (jC- 4_jli£JI AuS LaJ l jjAkj 

: ( Target Network ) j\ aAaa\ 
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( Limited Access ) -iL^^L^ a£u i'll oIa ^laxi 

oIa Jtaij! Jju 4_jl ^ la's II a_Sjju LaSs allLa^Luall jl all Li Lull (Jjj-*aj]lj ASjjoiII 
t_)£J (JI_Lall a!§ juj HiujliL/l »l jJaS jj£j aliljLull jli (JLusjLM AjI^J ja aliLiLnll 

*i.l_u llAj alll_jLull &1 a ^g_ll (Jj_L^a_jll ■‘LSja. ?-u kiAj j_a lilluA jiLi ^a-1 j] •• (j- -0 

.. a£j _kill si _A 4 _laAl 

* ** 

^ JL*j j_C. <Sj_klll ^g_ll (J_p».lJI jljl j-al olJLat-a UlLi^LLj^a I jlajl ^_i-a*j Lgul La£ 

^Luullj HlLi^.LLj^a f I Lk<~- Ij A lljua iajjji Ja.uja,i (iLiij ^ Remote Access 

lilLi^H k^ill oAA Jlia 1 jlauj ... A *m a lliLa^jlaua ^g_ll jj_n*-a ^j-gal*\ wL/ 

jl {"iC-Lfl jjju lll^l 111 A laA^/l ^g-3 4_llc- j_ai 4_luua llLajlaua ^g_ll cJj ‘ ^g-ll 
HlLii.LLj^allj all Li Lull 1u1j1j2 UlLajia-all oIa ^1 4_iia-a jJC. ajljial (Jjj^aj ■‘Lul^-al 
l_a 111 4_3t3jla]lj 4_iS-a-all jjl—jaiiaJI J-Sll 1 laull JL-iuallLM jl alllSj-jlSI ( _ s —II eLJaa-all 

jJC. AiLjiaJ ASjjIII oIa ^1 (Jjj-uajll lik.1 ^-Ualujlj (J x 

... 4uCjjl 

-1*j 4_uLajl*-all ^jaJlu jLtlu LajS AuaALM ^^9 Aulc-j A ag .a A L»ai ^jlajl (jl llA a, ; .lA.I 

Unencrypted ) jjiiiiii 4_Lii jjc. niuLuii &i^a ju^aiyi ajIjj j-a 

V jjjj jJa j-al Of.La£kll Aullc. 4_lLa^. ^Llaj jli 111 (JL^allLM Au\_^u j-a Ig^Ljjl. ^ 


... A. 


UC- 


UC- 


V 4 _uial^VI t—ill.uiu 11 ^Uaj ^HaLLmj <j^a 6~1 

(Jii-a ^IliiLul A^j-il (jl j j L»"' > LAN ) Auikll aSjIu jl ^glc. alllSjullI olA 

LguV ilLllj L^C.j^) 3 Hl_il£ Lalil -jlaa. j II 1 g . aj (JL^liLU 4_ulaljjaLf I lllSj_klll sIa 

aSa ill oIa (Jila ^llULaiV liLajLj Lk-lul 4_ajA*-a j^J ^1 j] a_kjll£lll A.j^-3.i-\j 

Windows Server ) Jj » Lul l ^Lki jia n Ki > 11 1 j > 11 ^Lki 

4uLl-a ^aLlai (_$i jl ( 2000 
5.1—uijj 1 uISj_j 11I slA L-klajI Ic-LjujJ jajj-k.kll j ilau jLgaa. ^_1.C ^uxj-ulu 4_ilaC. ^11 

Ajlll^ll 4^Uklll ^1 (J_jialll (^glc- alil^jjklll 
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jJj La£ ^gjjlxa fJbj ^JLaC-L ^aLjall ^aJ (j-aj ( IntrStlGt ) 

(j-a A£-l till J [J1 l «aiN I ^gJc. /jjjAjilill j jjilaj-a]l ^C-LujJ Lgjl La£ .. ^^-3 ^a£jl 

dijjjj! aSlA joi ^Lj (JLaill liLajj JslS3 jA A_Ll 3 A_ilc. La J£3 ^allsJI ^gi (jl^-a (_£ I 

^gJill Cl)La_ji*-a]l ^^gJI Jj^aIIj Vjj^JI ClUjl Aju (Jl x^jjV ' A_jIjJ JOA’d' (j-aj 

. 1^ wiq*i A^jLoll ^3 Ajl La£ IaAjjj 


'Ura i (_^aSI ^ua^j 


:cjUUh 7-1 

«♦* «♦ 

I Cl]La_ji*-a]l (j-al (jj-atil Ajltiil (j^aljidl VPN _y3jJ (jl i . ) 

ASbll t g r «jj : jliiLuNI: - authentication -1 

. CllLaji*_dl 


^.ikLau jpaj t p*jj : <LlLiL J jl L access control -2 

(Jj^.3 (j-a A *n» a Cjl_p.jL^j jjjSLaJ V (jjLil ^j--»l A. i'i'V 1 £_La (_£I 4 A^jjall (Jj ‘ ^**j" 

.a£a_ ^1 

^gdl cjLaji*-all ^_udj j it.\jS j-a jl£ £_La : Aj>ujl confidentiality -3 

^ ^ r~ Ki\ Yi 

■ A^ u oll 

j-m j LaAj& diLajls-all Jja*j <_$! ( x_ia : cjLajkJI A-aLL uj data integrity -4 
,a£j_LJI 

4 jjoJI cjLai£ IgJuj (j-a authentication Jl J ^.1 <j-a oj±£, a Cua^IujI asIj 
: PAP (paSSWOrd <Jla jlimaVl J^l (j-a cA/j^jJjjd' j)-a AjA*JI UAj 

^Ijj :jadl VdL Aja_Jjj jjtaiLuoVI Jj£jjjjj ^'authentication protocol ) 

^gdc. Ajji^a ( x_x L^ujjlLa ^aJ A^luIJI ^JC. Ig-lLujjlj jjolII A-al£ j_}L-L.! aJLLa. 


•r 2 - 


(_gjis.VI ClNgijJjjjl j^a 
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fi> CHAP (Challenge Hand check authentication Protocol) 

^jc. j;a joli) A <al£ Alila-uiljJ jiHj ^.la.a!' (j-a ^3 j (JLojjI A_i3 

,A_lJl] A<al£ £-a Igjjtaj ^aJ (^ 

,A_j£ill Clllillllad' jal.l-s nJ (j£-aJ ^ic-i (j-al (_JjJjou 5 ^jLajJalj 

J iq I'M! ^aJ-l3 <Cal*JI A^JojoII e-lllll CllLx>_jl*-a]l Cal/Lujj Ajjjoj (j£" ka! 

c...LJa..l Ajj-joJI ^j-a ^Lc. (_gj"l >n<a (jLa-ilalj ( ojiaLila j-ladlj ejiaLlla]l ^-ilLLall ji 

^)_u*i) ^ciil rijndael jj° cjLiajjljia. u-°j aJjj^ 3 jj° ^-iili-a ^alAiiiujI 

# 

^j-aj . ^jlLLal! S^laLila CljULajjl^kl] A ) jualllj ^_3 ^alLaJI jLla-al! 

• RSA A_Lajj(^k ^jjlLail o^iallla jjiluliSI Clllxajjlji* 


: JlHSn AjjSj 8-1 

^Liil a_A^ j-*j <■ < encapsulation 
1 g! > s-ij Aj_)j ciiV^jjjjdl ^^Jc. VPN -1! 


a 


S 1 X..L. 


Ijjj ^Jill) A£ajoJI p Va.^Vi midi CllVj£jjj^iSI A_ilaC. jA jJ ^*1» ai 

(jjj (J t/i'im Cluj^jV! 4 C ‘‘‘‘ ClAj£jJj^)J £-® AjiaIjiLa ^(jlaju £_a LgJaJj 

.^aluiV' oiA 

0 


R1 

R2 

A 

D 

Donnees 





IIuaI liAj 
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VPN aLjJjj L AN Luj <SU. LAN-to-LAN tunneling :1 

JLUIjj (jjj-aj (jLa^klLujj (jj-Sj ^ Jii 6.1A (_5-3 j 

IP ^a tunneling a ^ u_^ 

L.A~ tjaiiiijuj ^jtiyt £-a Jjsljia 



client-to-LAN tunnels :2 

LSLkJI sAAj . A^j-uil] A_j_jaO^)]l a£j-juo]Ij J-.ja.j L-L-i» ta. Ia_jj LSLa. ^Jhj 
(JlLa ^A^Lai (■ Ljjl (j^Lal (j-a jl ^gJjl_La (j-a a£j_uiSIj jjjLiajj (jAJI jjJiiLaJI 

.a&lLa-d'j 

: tunneling J' cjVjSjjjjj <>j 

point-to-point tunneling protocol (PPTP), layer-2 forwarding 
(L2F), layer-2 tunneling protocol (L2TP), and IP security prot 
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a<\AA\ 


:^a1* 1-2 


(j-a 4_3jiA."ba 1^-iS/ 4-k^aliJl A.l.jJaJjSV I L>° AAjJU 

4_j]liJl 4-a_jaJI QjiiJ (jl Iaj! ^-Jt-UJ V i_Sjjk _$-Aj . ^l-iVl t_SlatjJaj dljjjjVI (Jl 3a&l 

4 lA^NM ^jJa-x-l ^uaj*"! judj 1 iLtj IaAj - J Lglilac.j CjI£j_ui]I i. Laljx 

4 _xaAsj La] I^jaI ■A.i.AaljlisV I A^s jaill Aliu.i Ijl^S CjAiajl ^Jill Alll£j_ui]l aS A AaxJI 

:J^aJI JjLk 1 » ‘ xaj A a ihc- dlLaAa. (j-a 4 _usjll aAA 


: (Remote Access Service ) < jc - jliiil 3-2 


J_aj L 'sill—£j (j>>j qV' ^—3 *.“ 1 a&\ _uj A_3 A _i^aLaJl A ) *.I Alll^-Lill ij—Ls Jjj 

jXall (jx oAjsJI LgXjjjS jjx dlLauaij-a]! j AlA£j_L]lj <j-*ali>Jl Al]La_ji*-a]l 
jl-^-Ja. ^^.3 ojSjXall AJjLajia-a ^Jj (Jj_j^aj]l Ajjj (_£ Lil ^AsO-uiaII (jj_j j LgJ 

js # 

L_ulfLa iiLLail A3 j , Ia^Ij LnLa ij-a a£j_A lil 1 all A3.^JjAall L-LuiLaJI 

C- lliLH jj_a LAjiJaj-a (J-aju A3 . A>LJ1 ^jLi. jl «£AjJI j)-a A alia. a (. Laul ^3 4_cjj-a 
(JjLi. jj^a jl £LA\ <iLa-jl j^3 Acjj-a^l v_jjl£-a]l (JjLa. (ja jl IgJ (jaJjJl 

ji A-utall ~^A.*i , ■ CS-^ 3 ^' CJT* . jL^ill ^_9 Jailll J j a^£ oAjxjJI ^a£jt3lj-a jl 

(JjLa. (j-a ^}JLa]l (jx oAjsji 4_siaAa (j-a (J_aju (_£A]l i _sJaj-all 

^3 (jLjASLja jx.1 ^a-ij-a J JajJaik ^a'A-xj-mlj A^jjoiil 

Aju Ja.A.,11 Jla3) ^a!lj J 4_LaJiJ t_S_laj<a]l (JLa^ajl CS^" jA-a 


^)jjljj A il£ Lg-i-a oAc- £>AA CjLuLuo .4_ilajtJI 

JraA (Jli_jaij AsLiJaVlj, AAllaJI (Jl j> ^» 'V I Axjjoj, JajJsL^Jl jUj) , Awall ^aAaJluball 
L^jV 4_Lal L-a lx_jj ^ -iLaaJ' (Jliil£ AllljJ will eAA ^a-Cj - (Jl x ^aJ*J' ajJi3 ?.l_jji 


jaAAlLAj ojAliLall vAjl£jJlll l_uI£ . ^Ljous J 4_aii_a ^jLSjiall (J > s-i' Alijl^ 
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1 g <1 £uouj ^Ic. L-iIxiu] Leased Lines -1L ^ajJI Lc^jaill -Lille. JajL-s 

j LljjJ L-a.lkll oAA (JjlLa ^^-3 <Ak_jka ^JL-Ua ^ 9 Aj C±j\£ 

? _ 

.La lc.jj Aka I Aj»*aLk A£jjolj j ■‘Lille. ■Lc^jolJ 



■q > 1 ui 


‘—JJjalAJI 




Li j > >ij£ Ig^a'^kj-uil Aj»*aj3 ikllkA Clul£ , (jlLa (_)£ ^J3 CLuJjj$\ 

j_k.l ^-11 (jLLa CllLa_ji*-all (J_flj LgJLLk (j_^a 1 _j_LaJ a£j_Li£ j dlLajla-all (J_sjl 
£_-a (jjJllaaj (Jj-j^ajiil tillkA (jJli ^-1 j ,Aajl_jaill ■‘kajjiallj -LjjlLa S-lj&j jl*_>.«lj 

Lil£ j] ^ILaJl ^£-3 jL^a. (_^Li ^ILaJI ^^-3 jLgja. <_£I (j-* J1 t ^il LM 3 I g > > i :m 
( jli ADSL -11 j-& ^jjjl g •>!' (jj-j (Jl iWiLH A_ic.jj ciiil£ (j] j .ciujliLllj (jjL^ala 

lJ£jkj ^ajli JL^aJ j Ajjjilka j -Liilj (jj£j 4 alSiill 



•• • ••• III •• £ •*• 

■ ii| i iHI nnim 



A^fkallj ^^iliill ^^ijLgJI C-lllall (JlkiLaJ ^aJ ka3 “U^alkll ■4_ijJaljj3V I ClilLbkl' ^ Lai 
^ic- Ail^ll ^ua-iLkl) ^aJ t (J^kaJ (JL^allLM Ail£ ^uaik La-a Aljkajjj3V' 


Ajjlxll CjL /1 t^i‘lL /1 £-a AjjlLa t_a*jJall cLL/l £ 3 j J *■ Lei'll' 

.pjljkl! ekVL^iVI ij^z Lk JfLkj j) 
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■a a\\ t*M< y1,\\ 4-2 

^Ixj jAlIj <c.LuJl jlA.a I j,a“Htita VI i._ iU->‘lj A il-stall <dil^n’tili £J-ujjj jl 

aAA JaJjl A 1 ]ttij VPN ^Aal^A-JjAll djVl t^o'iVl 4_L^aLk Ajc. j,a (jL^alil I <1 lll£j 

| JL^xiVU jll^ioi jjc. Ia^> 4jj3x-a A qK i jdll^l 

:VBN Extranets-1-4-2 

dll_uLuij^]l J cAoc.U_L^all J A-Jjlajll dlLc-Uakll ^g-3 dll.ttuti j^all j_-a j <jA_JJ 

AJajli diVl t.-»‘iVi J (Jlu2 k ,_4_uilill (JjiaJl aAA dilA^.1 ^ ml IajI jlLa lAl.Wntil 4-iaj^^vll 
^g-alLxll ALt^ajiSVU A -vj'i'i^ (jjjUl (dllc-1 \ t.oll l,). ttil. ttil 1 ilka <JfLij (dlaatual <ic. jajJI 
j_-a sAIVI ttiVI j_,a dA—ujuj j-all aA_A j i«aJ L-a A_^.jJ Vl-3 4£.1 _ua 1I jlA_-a C. j j an tall 
jAJl ^gji.ttitall 1AA ^gJl <>5 JLa> LgjUj <^-3 iij_n£ ^JLita djjta'vi ttil ^il! djKn«ll 

aA_A ajA_3 j_ta Ajjjl A J-i^l <_]_£ ajAl_ 2 tJl j 4_laVI -IaJj_ll aIj-ujj jj £j] 1 g 1 a jJ 
jj_mll dllj_lij (Jaj j jljjill AlJdV LaC.A <La jVUl dlLajlxtall jjSjli (_ 5 -lc- d-llttuti jtall 
Jajj] 1 g ‘ic. ^jc.V j AojjjLujI A 1 ntij j An l^jl La^ (_g.il t'ti \ 

.^V' JjoU j)JC. jjtftll 

t'ti ^_3 jj_jjj JJ j )->'i (_g_3 I j_u£ ^aL- t-gj dll^j t'ti 11 eA_A dl-ti t^al ^JLjIIj j 

cl_il£ IaI. ta'ic-l 1 gjlc. A-aiixj ddb Aii djl£j-till j^a j_ii£ jl 4 ^.ja 1 <JLaC-VI Cjlc-lla3 
^aUajj <£j_joJI Ajlj^a SjIaI ^l_laj (Jii-tln ^al g .a dll^j t'ti 11 aA_A (_g_ll A'l ttij 1 g a)\* «a j 
iA lie. Al «a'ic.VI j^aJ (jjlLuja ^_g-l| l^jl^ n'ti ^.IaI jx (AAaSiIj jl AxJ dlljl tti~vll 

«.lj_^.l jH° <«^-jl-^J—aa^l bXJt> jjA_I A _iaa! J-J^l (AliatJ_j-<al dll 3]jWi\l aA_A jl j>_lalj 

c-jlujl ttiV diKi /tillj 4j'iVill Ajjjll aIAxIujI ^c. jjjjj^ll jta-vjj .Ajq'ilgll dlLall^all 
ajJ^VI *AA ajA3 ^gi i-*KtTn dlVjl-di j^atti i IjAc. LaS cl^J AjAaJl ^lA'v'ittiVI lAA 

dlLliaj f-ljA^a J^3 ^g-3 l~v ttil_) tdlA ^_U^al A3j ti^-ljU-axtll jntitallj ^1 g tall aAA ^1-ajl 

_"^jjj^ll djl£ jdll aAA jljlll i_ll ^tt-^lj djLajLttall 
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\j'vj'il^Luil .lija VBN —Jl 4 <a,VVi (_£.iJl ^C.aJI li_A (J2/Lk 

:VPN Intranets 2-4-2 

JjLx-aLaJl j JlllfLui a^lc. ^."iVnuj | ntr3.Pl etS <jl 

WAN (j* Intranets uj cAS>mi t^xl ^a=j ^\ 


i^J—A V-l-J A-C-jjla <UOVi m«a\l ijj\t >>iVI ^jLi L-a 4£j_Ji] dllJiljiil J} jWi\ 

j ^j_jai! cxusti Vj^ j cjuu^i! ^ Ethernet 


S-iuoll CilaU^I t5 J& 

jl ^plill (_j-a j 1.1a. AjilfLa A ilx>C. jA UallA dill jllll dlllfLuill sdA JaJj (jl 

Jli-ala tlua. VPN jjd <_5^J liA j j (jL^alVI 4-lC-jj qa (JjjLa dllld 

L-ujLujI sd_^.lj!La]l A ix>\lxll 4_iij) &\x \l AfLuIiJl j)\ <a''n tul (jx. A !£. /iioll S.1A (J_aj 

adjlxJl j aJc.1 jlall A-ialjarvll Jlllc-Llakll (_jJJ <Jj^a_jll 


.MUl 
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Cj])a*WPN 


CiLuiui^aII (j-a A jAx \\ ^Laibl VPN A-iCajjjSV' A_j»*aliJI CllSi-dl t“ivW 

t & f. 

— JjAliS^J-ajill (jSLalj ^_yaju Lilta. lAAaJ (jl (j£-aJj .Allis A Al£_) IfrjSiC 

VPN .ACal A-SJjiaJ <£jjolSI <SlC (JjCAj jjjiiaj-al] ^.<u.uJ i"n*\ ^^aC-Ua-a 

ASjCaJI Jalj (j-ajjl LaS l^jlA (JSjoU A^JjuoII A-Sj-ual a^ f. Lilli ^AtCjuj 1 

. IjJaj' Ig.Cax 1 ) 


^alAliall (j-a AjAaJI iOS ^-i ASj-jCa I^IL-joI^AS 4 V VPN -Slj ~**'$ ■« C** 1 iS frljjal 

. IAjjc.j CnjaiV I jj-al ; Cljjjj^/1 CjVjSJ jJjj (JiLa CalgJI 

AJLjiaJ C]t-a_ji*-a]l Calc. ASiC aAaH >»*i aSiC AjuJa\jl2^ I C^alaJI A^iCil 

L^c.i_jj'i Cy^j Leased Lines . c^aic Jaj Its qc, ica jc. A_ial 
calc a£^s ci J\ : Internet VPN V>i 


<-jl 




kJI 


(J-aJU ^gCSI A^jCll 


(jlJj (Jjlallj till uAa (jlJ VPN ^Uajj tilil£-aLl b^LaS 


Ca^Cuj jjLa-Cal LaAdj. maj ClL-a_ji*-a]l (J-iil CljjCV1 lillCj baA'sl jua^a Lg_)3 

, AS^CJI ClLajLt-a Ajjjojj 

q-a J_Ca3l 71-1 X .alii WAN. CllSlC ^gJc. VPN -II Jj_n]aJ CJ l_*_l]aj 

icajjisjj <ai£ (_jai i^i LaS i jcasVi Ia^IaI j ^jIaII u> jcPrivateWAN 

.AJUij 

IaIs tjiiii^a (jjA-L aAaJj ASjC (j^a (jjc^i ^jii aSiC a-LCij Ajjj tAlil (J_rsAi3 

f ^ 

jJaC (JS_ujj La-a A.l?aj JaiL Ail La£ jj-i'iS L fllS.1jm Aili ^gilljb iaA jlaCLooli Cjj^S 

(j! _ i\ Ail a. AaV ll 4 (J1 a^jjVI Ja_C ^_3 <l£_iaLa j}j-gJa <JI—^ ^j-2 J a^jjVI ^ Ic. 

f' 


AS1 C alAaC-joil jJb JJiaVl (J^JI iAISaJ JS-Cj (Jjjdli V AJ A ilci ClL-a_ji3tASI 


16 

















jj° . ; "i c_.ua>-; l_a£ c a_jL (Jl x<ajl j^ajJj c _ s Aillj A Llall A qKll cliL clijjjjVI 

. ullLajix-oll A-aLLo (jLajJal ullLajla-all 

aJjjujj (_£l_J ISP ulljjjj'^n '‘LaAk. Jjj-aJ (Jl j-^auV 1 All ^-ajuk Lgji VPN ullljj-a jj-a 
(_$1 AiLiaV A_a>.l-a>J (j_j£j (jl (jjAj — ISDN — DSL ... ) tg-J 
VPN ^aAk-al A_^.Luj ^ >>nj)]' jLalli tA^jjall ^ >>n jjl ^Lall ^.3 A_jSljJal Ajjj-l^jk; 

55 

4-j,1jtq"ill JjjJall ^ ^a.Wi >>n ^^ull oAiauall ulilju^aJiSl jj-a *JAj ulijj!ij'J 1 <£jAuj LL-^aJ 
^1 Ak/Luil jjl La£ WAN ...) LaJj ullJjlj (j-a A <a t ullLaJ-ij-all (j-a A-Cj-a^-a ^ 
^aji; (_£aJ1 jA ISP ulijjjjj/1 “L-aAk Jjj-a jjV ^jLUl (_g-isll ^C.aS 1 j)-a (JJsjVPN 

. AiL_Call ^_iall »C.A_1L 

LsLka'JL A_Lal£ ISP ^1 g <a_1 ^aLlill ' \J r - VPN ^a'Akj-uil ^aAC. aJL^. ‘. _jkl ^AsuaJ 
^Jill ullLaAkll (j-a Juaj-uU liiU VPN ^alAk'ixjjl (JLi. ^^3 Lai ( (_gj_ki (j-al ullLiLajul 
.0 Jufljj u ia>lj]l ^aC-Allj ullLLajull (ju> c <5q~\ '' ^JLlLj ISP l* <a.laj 


icjUjJxaII qa! (jj-abi VPN (j-aijA. 1—3 

i ullL-a^Luall (j_al (jj-al—iil A__iIIj]1 All VPN ^j3_jAj jjl t. _ 1 ^>; 

y?m <jja o-a a£ £ lii ^a*jj authentication <jiiu-utfl -1 

ullLajiauall U-iLaJ 

2 _ikL^ : access control^iuikli Jj^ib ?s*il\-2 

(JjkA j)-a A_ii*-a ullL^LL-ia (j_j£LaJ V jjjAll (^alkAuj/1 x_ka (_£ 1 4 L^uLl] jJl 


^^ull uliLajlauall ^uudj jl ecj_Jj ji£ ^ia: confidentiality^Jl-3 


.<£jAo11 ^jc- 

iaAj& uALajk^ii Jja*j J ^ : data integrity^Laji*-aJl 4-£Lw -4 

,a£j _Lll j_ jju 

uiiLai£ i g ni (j-a authentication Ji j-^.1 (j-a a-aI j . ') ' AiLaAkLuoi Aiij 
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! PAP (JiLa ^jlail joiVI (j^a AjAsJI j g h LaAj c_j_joi1I 

jiiii^vi ^(password authentication protocol ) 

IgujjLLa A^uill ^JC. IgJlujjlj jjoJI A_a1£ AJLLi. i _Jjoi 1I A <al£ 

CHAP (Challenge lsj^J i aal/>Sjjjjj1i u-* f ^ ( _ s -ic- A_j_p-« j-uj 
jLuoj] A_i ^ ^iiiHand check authentication Protocol ) 

^aJ (^g ‘ aSc. ^)JC- ^Jjaill A_a1£ A'iLi jujIjJ ^AaLLuiall ^a.V*a.<a]l (j-a ^^jIjjAc. 

. AjaI oJ^aLj-all A aIS £-a Igjjlij (_£.a 1I ^aAi^all lg_Lujjj 

.AjSaII ^jjlLallj (JlllsUaill ^lAa.*iml (j^-aJ ( _glc.l (j-al (_gj!iuaa (jLaaAalj 
jiiAnil ^a'Aajjuil ^Tu 3 A_x>l*JI A^JjolSI l Ajj^C. e.Ljjl AliLa_jl*-all *LaLLujj Ajjjoi ^jc. Lai 
A_jj_uJI ^j-a JU (_£jJ_uj-a (jLa-Aalj t SjJaLlla j_1*JIj SjJaLlLaJI ^_ul_LaJI jL 

.A_L^la jjajuoj ^JjlLa ^alAialuol 

VPN (Jl (j-C- j LaA_jc A ic. Vill i _ < -vj ^aJI ^gjUill J aaaixJI 

(■ LLjI A iLaC. ^jAj (i —sLiiiiiii encapsulation j tunneling ja 
^ g-3 S^jjlLall ^C. VPN Jl L-fl^jial (jjj (Jj^aJ AJiaj ^g-AaljjSl 

. (_>aa*J-J -aaaj J-JJJ -ill e-\j -Jtfl 

Ajjj ^gill) A£j_ui]| f.^aJ A-xOVl juaaII CllL/jSjJj^ll A_ilaC- jA JA.I ( _gi*-aJ 

(jjj J >«-i*hn ^1 ClljjjjL/l A^j jua £-a Ajisljia ^J_a*alll ((j >i»J £_a Lg-LaJj 

, ^LuisV I * La 

: (jjllL^ LLil U&j 

VPN aJ^Ijj LAN ^giSfLi aJU LAN-to-LAN tunneling 1 

Qj£j ^LilLj (AjV^SjLjJjI! (J-aAj (jLaAaJLoij jjjLSjAoll Qj£j V A3 aJI^JI aAA (_5-3 j 

(jiijia n^ji IP JjSjjjjj ^gJ] cjV>Sjjjjj1i ^_gA tunneling Ji A_^-a 

. Ig jlc. (Jajjjxa ^gill AAjjLVI ^-a 
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Exhibit 7-7. Gateway-to-gateway VPN using tunnel mode with transport or tunnel mode 
between internal hosts. 


a^l ^uoU. Jajj 4 JU client-to-LAN tunnels-2 

(j-a jl ^Jjlia (j-a ASj-waitj Qjl t^i'n (jjjJI ^j-iliLiLa]' ^jjjJaj^al] AibiJt s^Aj .<£jjoiU 

_ a£.l (JiLa ^aA^iuj f.l_ul ^j£Lai 



Exhibit 7-5. Host-to-gateway VPN using tunnel mode: a typical remote access solution. 


tunneling : point-to-point tunneling protocol Ji t>j 

(PPTP), layer-2 forwarding (L2F), layer-2 tunneling 
protocol (L2TP), and IP security protocol (IPSec). 

Hardware . J Software VPN : Ji t> u^>> lsj^' 
t> Win2000 Server *<; * VPN *L£j] UslLaUj 

/:nti ^ i^aj ^ WinXP clients JWin2000 Clients 
( _^_3 Active Directory <j-a Al$ ■ ui ^ ^ ^ j 

fAL-y IPSec ciu^Win2000 Server 

VPN ^»j<an«^**i ^Tunneling a j ijiiLa^ji*-®^ i ^jjj^ai 
t> authentication jisiL-vi cJ Windows 

• A_iSj AijUaJ J^Lk ^j<a jl _Jjuj A-aJS (J^lk. 
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(j^al £_u2alj-aJ A a 1 AJljjua L _iikjj Lgij VPN ; Jl ^gjLai-a j£ij jjaV j 

i ^g-lc. .l<aJ*j Lg_jj£ Lg-J ^ 2 >aJI <_j£-aJ V ■4_i2^jLk cUb*J AalalLa Lgjl La£i 


.4 q\"i-N a\\ (j-a VPN J1 dllaala ^.iaJ AiL-iaVlj 

^aJLC-jl VPN ^'..^''LujIj (.-1 >>rN' jjj.aH it-ijl j Jgj mba (JbLa. (j—aj ^UilLij 

^ic-j j^bHj 4_i3jjj]jj eVbMj 4 £JjoiHj A al^H (J-alc- jl.uc.bn juau jJ-1^ Ig-al-liJiuil 

C- UnNI jjjall jllaJ) IgJUjLall 
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£1,11 

jjqAV'ill 

l_ ijjtj . ^jjLuuiS 4_iJujljaiV I ^42 (jj-ij IPsec VPNs A-liaUa JiVi ^j-a 
DES, 3DES, ) q\ jj £ kl l . u ]' Lil^. j\h >«*iH ^!j_jl SAx-IPsec jjjI*-* 

(RC5, IDEA, CAST, BlowFish, 3IDEA, and RC4 

tA_«aA. AjIjS ^JLaJI (AjISj jaill (j-a o^_ij£ A ■a AlljjljlM lil k“< 

t £ 

(j_-a (J_jIa ^a_S <_5-3] J-u4 (jj_lHa] ^J-llll A_*ILa-aj Aig _uo A 1 i xuj 

. ^-vgJi-U LajS (_JjLai^)llj Allla_jl*-a]l (JaIjjj AiliAa) ciJljLa_ji*-d^ 

$.Lc.AM Lg-l^aJ A ^ Aj_ 2 lj ^»A£-j t A£j-juo]' &A_gJ A_ 2 k.jjLaJI A »ilia]' (JjLa) (J-aljjdl 

jlliijl ^gJj CjaI _ (<Ic.a]j A_jjSj-a U^IA - 1 J-T t J 11 ' JIaJxaJ jl Ig-SlLaj Ig-jl 

^aj_a. 1c. (Jjg >jaaall ! (JJla ^A£j judll ^ Ic. (_£l) AjjJJJ_joiSI (j_-a A jAxJI 

L^uiaj jij ua<,\\ sj_$J iiE_Sj ^packet sniffing) Jj1_^i 
A ilj-a] aj^i ^ olij <(computer hacking) 

oA_12«.j]I A-ml' jou! L “' (ji ^a-Cjj •EbjJC-j (h03XGS) AliLiLaC- ^gJj 

^g-3 eAj_ 2 kj-a SjAlJa A_-aJ^JI (jl Aj tA_ijjjlill CliLaJA^al'j L.j.-.ia A'j A-ali 

A_C.aI)j A_aj1a (jjjlji Aj_ 2 lj ^Ax. ^g-3 (j-aSj A mi’jj]' A IS juAa]' (jl_3 csAjAc. All! x a\~\ *i 
Aj V 1 .ag .a IjLuj ^J-ik^ai AjjjjjlM (j-al (jl Axj Jjfuj la-aj . AlljjajlM ^ ^ ^ ,a Vi 

Aj-x^aVAu!' Ajl«a_ji*-' a ^ (JaIAj AlllilaC- ^g_3 ^AA A i«a<sV j^Jaj t A_lSllAa Jx. ^j-a 

^aEal ^_3jljdl 1 g \c. A_2ulj]l AjlAjAglllj ^y^i\ lljAaS JS-AlIj. (J-ajdt AllL-aA*- a J 

.Ia^jC. A_J^-d^ dlLS^pJ! tAlijjlj'yi ^ASJ ^^-2 ^iSjlHaj -lij k_jl_jAj£l 

jlSI ^j^a AjALi-iall3lj A m (JjLujj aLaIc-Ij CLljJ±)')}\ ^j-<al LS - ^ - ^ Ajl_ua-a ^ AAJj 

. A-iialll qA^J (Jjlaui]l 


:^>Vi CjLaau 1-4 
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(J£_jol) LgJajj ALA_jl*-all ^g-lc. (Jj ^-3 AjjjjVl ^-Laa. Aa& (j^v\\*n 

^j-al (jlj ^jLajJal (jLixui^Jl ^3 IaaAI .-±^j ^Aill ALiAaAiSl A® L r -j ^7~ a (illlAj 

jj A.a AliVli ^3 ALjAAiSI oAA j k ^1 nj tALALall A^jJaVl (jJJ AL-djlst-all 

<-jjA (j.* .(Integrity) a I_A_jl*-a]l A-aV_ujj ‘(privacy) 

.(peer authentication) ci>vi uii>vi 

:(Privacy) ^ LujJxa]! 42-4 

(j_A (j£ual)_j Vi .. 1 •> j 4A_ijjjjlSJVl A-ll_uajll A j ^ 1c. A_la3La-a]l ^l_j 

i A i x^ajj>^aaJI ^gJc. Jal^aJUj . iAIIaj LgJ ^jxjjoiaII A_u*_aJI AljiaVl V] 1 g jlc- ^VJaVl 

1 “ il -al£ ^IaALujI :^_a jjLSul ^SA-ll JjjJa j-^ij ‘^j-lj^l A jU»j ^.SLA-ll (j_A Aj V 

cjbig-j; ^_J! Ail— a) .(firewall) yiM! j'^'j ‘(passwords) jj>-^' 
jJ ijLiyi jaa iUj .(authorization certificates) 

JaA (_JSjol 1 LgiV t^)jj-a]l A_a1£ Ajj_uj ^ JaliaJl ^AA-ioiaI! ^Jc. (jl jAj SA_La&VI 

All jAa. jAa (jS-aJ 4 jjJall IsAgJIj . ^uaAj-Lil ^C. A_Slj ^gi (JjV 1 ^IsaS! 

.(eavesdropping) A—axaiiii tjjia a< a\i ^11 *v<i< AALAaJi 

. (__ua-lAj_j jjA_J A_iiXA All_aji*-a 


: (Integrity) ciUjk-Ji 3-4 

^jAa-ail j_Au (_^1 j ~ix\l aUAj .LgAjAj AL-a^^la-all (JA ^ "nlxitv A_jLa^. j_A A_s V 
A I3xi (_£jJAx> ( _ s -lc- JaLiAl ^_i iAUa A_iaA 1 /j. aSjj . AJa*lLa J_ 1 C- jl A <a»**i«a (_)S A 
^g_A Aj-axsAaSI A_wJI Al iLaC-j Ajj_jA 1I r 1 lAV1 jj_£j t4_lJUtJl ^g_3j -A—1 jjlij-aj 
A_ajAc- A ALAI ^_i_jA 3 jl AJa j_c. A lij .A ALAI Ajj_A jl AlJj ^g_3 4 _u_joi11 
^IaAAjjI (j-S-aJ 4 AL_jLjj]1 AlJj ji AjjAu ilM-'lj-Ail <Aal J-JC.J t(_gjA ail 

jAAuiij (message digest) aJL^jII aajj^vi a a :JJ 1 a al_A 3 
anti-) aLuj jjjiii sa\ a al^ajj ^I aaa i LajI aaii j-aj ‘(encryption) 
.-llAj ^1 ALuojjjili ALSLpi j-a ^jLa^J (software virus 
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(baCkUp) A-JaldJ ^z-uiAJ Jal iila.VI 1 dj' ^ g a\\ (j-a j . dliLnll Ajjjd jl 

.<=... ^ e 

5.1_ul A^jdll JJaall JLa. jl i jjjdal] IgdajJU JLa. dljLll]! 

. (Jfljll A iLaC- 

(Peer Authentication) ^j^Sn j—Lvi a—^ ^ j-Sa^i 

"2LS (^g-lc- ^ ' -N-j i] idbliJ! JjLjj A-Aas-J a \\i ^\1 dJJaSM A_J_j& (j-a -iSlAll L_l_aj 

dl-iLoC- J_!ia) ^-Ida-Jl JlSdi (j_A J< ‘~‘‘ <. r l~VvA ^)dVl A—i_j& A_3jjtA ^jjQj Jail 
A_i^& (j_A J qVill dJJ_a.J Ij Jj k11 jjiaju lilljAj . (dll I i/TS joJI (Jl Vnlj 
'A—±AJ\ c(passwords) jjj—all dl_AK :J_ 21 a a! diJ I diJ—LVl 

(Pii (digital certificates) <*&J\ dhi^dAij ^(digital signatures) 

dllj-lA-aJl ( _ 5 -lc- jL-aJC-Vl-J (J-aSM J-Jju 1—uajl (j^AJj . dJlj dj_la x^aJ 

.‘Ajjj, ^i\i ^ji AiiLjai cdjj^aiij ^(finger print) ^y' a * » j : jiia a-ujjwi^. aH 


joLuiail 4-4 


,ddJ 


^-Lij tAjjjoill aJjLojj A—jl 1 Jd ^aLc. j-d -da jiqdll (jLdVl ^a- 

(_^Aj1 ^ A-jojI >n*\ 11 JjL»jJ 1 J)-a lAja. djia ^^3 Ajjjj ^IdJdV' Id 

Jj^ua ‘Jaj >1 ^-ujLj AijjjtAll A_JjLw-aJl AdAjjljia. jjjJLaliJ j jQ ^liij . jdJl 


AjVUdii jxafc] ‘(Cipher text) jLd lid d^is (Caesar Cipher) 

dLlLaju ^^Al d^Vl (j-a v1» 11 .lu l_Ad dj^Jaj .AdjJ^. aS[l £_a Aj^LujJaj 

dijiAj ^ jjj_iiaS 11 JSdj.(Enigma machine) Jd 1'H A-Jll ^ *1 aj <■ jj° ‘‘"'11 


dj-Sildj . jdaJl Jjl ujj j <a <.A La'Vl d^l ^allliU SdlJlaL aJj_jujj ojij. * la 

t dildii juJI jdlji LS _aj .jjLjaull liLaj jj° >^11 dldiLuJl Sjda ^^.a dl—ajS^Jl 

d_ 2 kdj t j: a .'“'11 dLauL A a (IBM) ^a] A^jd d_jaujjl 


Iaa (jtSj .(Lucifer) jS_iail A_ilc. t' <a\l-il jja_d ~1 laj A_Cjaa. -J! 

A_^,l_^. ^aJLxJ LajIsjC-V A_llc. A_jSjjaV1 ■LajSaJI dLUadl ^adjj C JjdJJ JUIa 
^ jjl djl (Jd. d A_jj i ^jidill A^Jajl Aj-saldll dduoij^il'j dlSjjoill 
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j iq /in 4 *i?Vli jjjlallj all dlSjdiill j_<5 4 Q» 11 ddkl i jj 11 liLl j dLaj . (jjlj-iaiV I 

. _dill dll_lLaxJ jl liu J j. 2 lj 11 4 =»UJ1 jj_jl 1 a-a io- _d 

^lll—a-all ^iiaj-ll dgjt-ajl 4(Jl_^all ld& ^g-B Cl lag_uoi ^^dll dl_>.n>.i:dll jj_ji j--aj 

and Technology- National Institute of Standards) i^jJj^iij 

• U.S) _*-ail _Sjj-a^l _H ~ ‘ L 'l.' 1-Sjl_ juj dijj_*-a]l (NIST 

1973 f u. a^ii 11 a j] ^(National Bureau of Standards 
.(Data Encryption Standard- DES) dljLnll jj° /"'' jl_i*-a 4_ilc- (JjHai 
(Lucifer algorithm) ^jjj± JJ jJ^i' 11 a 
(JjSJ-joiaIIj (_l_ujj-all L>* UJ-^d J -2ajJ-djj ‘(bit) dj 56 JJaJ jjidJ ^ULj 
i 1976 ^Lc. jl )» aII ld& 4 ^j^Jl dLa-ladoil Jl_3j .4dlj (_£j_iaill ^IdLaJl 

(_j_l ilali j_/a dklj ^Lc- duj .(ATM) (> _g-lVl ‘_sjj t^ill dVl Jjadial liljdll 4Jj.laJC.lj 

Italia I jdi j 19 d ^Llaj jjjjtal_2k ejjljajl 4 j1>Ij j)Ja .(DES) dljljjll jjq joU jL*-a 
public ) ^1-C- ^lii&a) ^jjLLall j-a l_ 2 kjj ^aUaill lilA ^JldLaJj t(RSA) ^a-ujl 4_llc. 

.Jaia da.ij ^id-a ^aidduoi jc. Ldjc. ((private key) (j-^Lk ^(key 

35 j ^ ^ c 

4iiljjkl ^Jj .13 4_jJ V] ca-lia-all jj AXaSlI Id. laijLa jlS ^.UVill Id (jl ^aCjj 

(Zimmerman Phil) Ja J ^ Jc juii d^j .d lad 

j^liia ^l-lk/dl jjaJJ 4iSlj i(RSA) ^Uaj AaJxJ jjq d ^taljj jJjiaJJ 1986 (»lc 

Pretty Good ) 4_aji!ia]l 4..i-xja jx^vkll 0al_jj ^gC-dj id 128 (Jj-laJ 
jJbj cjjja 4kd j 4_jjld 4k d ^taljjll llA j-a j3jdj .(Privacy- PGP 

. JlsJl Ilia j VjLddl Jjq >Vnll j-a 


^(encryption) jaL^i\ > u 5-4 

^JC. jdll) daj^La ^JC. dl^ild ^J1 dLa^LtAll 4_ilaC- 4_jlj j ]Q djju 

jl dL-ajlatAll ^g If- ^-!)\_!aVl j-a ^a^-l ^j^akjdll ^)-d -^uaLk i'i'S/1 ^_1 a1 (^ luu a dli 


24 

























j^ai AjAlaJI (^aj-i-aill ^ 1c. ^)li_iui]l A-lLaC- (_£jJall l-l^Jj cl_g-a^3 

f. " £ * H £ & 

J_ai] AaV I Ja—juo^ll iLM si.A ^^—3 J£_luJ ill-jjjjV' (jl lx a]' (j—<aj - jua ^ 

‘bjkxiiA Ait-U^i (AilLall il)lS_)^JI (J!ia) Auol-^1' CljLdjL«-tt]! Jflj (j-a Aj Vj . illLajla-all 
. (^ajj^aillj ^jljj ~N A'j (jllsiaiall (11 lie ^j_x> Lg_LLaljj l^llaLLuj ^_ic. JaLiaJI AjjI (jj 

u jjs _m a _ 2 j Ail_« j\\ (encryption) jA_in LS _a ^iii_ la\ _uij 

.(ijl—lajjlj^.) ei_a*-a Aj—Aaljj ^-j—i^a ( _ s —1) ^lil La]I sli All m"lj . (deCry ptiOn) 
IjAAa) ^LiLall (JjJaj t Aixajjl^iJI I^jiijuoLuil ^jiLalc. ^gic. jiLHill Ai]bt3j oj3 Aalixlj 

(inuiiiii oiic-j a iiac- jA jiiinii Ala jii Aiikii q ,uj .((bits) iiuiij 

.ojiiHll iikl L_Luiliiill filial I ^lAalimli Allij i4 Aj^aLH Ig'ij.n^i 



:(Symmetric Cryptography)JjUiAii j^aii 6-4 

(J-ujjAI (j^a t_l£ ^AklLiiJ t(JLLlla]l jii Hill ^^.3 (SeCfet Key) gjj-uJI ^LiLa]! 
^3 jlijiail Jjilij . IAjiLIIj tilSj aHjo^I 111 ^_3 Alii (_£j_jaJI ^ LiLall ^JiiiLoLallj 

pij >» i ^-Li (Ajjjia jj>-a (HjLaIS) (passphrase) jjj-AI LS _ic. ajIaiII 

? ** ? 

Ajuj Ij_a-ajj oj i» >^ij o^-l-iL lijja. jjjAI ojLiC- (jl (jS-aJj . IfrxlAaliml 

jj-aj Asl-Aal ^iij AAc. jjj-all ajlic. jjqLnll ilili^-ajj uilli 

AlLijil Jliiliil Ajuj .aSLujjII jiLoA ^tiLa ^cjlill ^-lliill AAaJI (JfLiuJj . IgJjia oALj] 
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jq niioll liLa (j-a Ig mq*l fijl-JC. *^a]l ^a-laJi ml ce^SjauiSI 

i)bc c^l ij* cjU^i ^>2 4 ^(cipher text or encrypted text) 
<_>*ajJi oSic.\ (binary key) ^ULai! j a ^\\ jjj-aii 


•f> 


^'cA 


>VI <K- 


J 3 - 


J&1\ 


lAA ^-a oj_aj£JI al .DES _jLi*-a ^g_lc. (JjLoIaSI jlilSI g q<a .Ixaiuj 

Eo-a ‘(jt-ai (jjJ (jjj-uil! ^LjLdSI (Jjsl_u ^_3 (j-<a£j dljl^S j ]° joull ^j-a 
.^gjJaLall (j-a lliuj tc >> All i (j-a liiA ^l^aJluil 


Sending and Encrypting 



73 


Symmetrical Key 


Exhibit 4-1. Symmetrical key encryption 


:(Asymmetric Cryptography) JjUi^lm 7-4 
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^}_ic. LlSLuia] LLa. (JLLaLaLUl jAiill $.La. (Public key) ^LaJI ^LiSLaJI 

5= ^ 

^AivLmiJ tA^Jj ^L'lLa ^lAaL-ml (j_C. 1 3 C(JiiLaLa]l jig Aoll ^_3 ^AiLLall (j_LVI 

^jl_:L'iq.al' (jlA_& ^^C-A—ij .4_aLlc- 1 a^-1ij (jJ-iil (j^l-TiLa (J_liLaLaLUI ^)ji Aiill 


^lai-all (jjiLij .(private key) <j-aUJi c^'j ‘(public key) ^alaJI ^Viq.alL 

jujJj C(Jjojja]I jAj ‘Ja-ia Aa.Ij (J.Q-N >Vi jl Jaia oA^.lj (_£AJ lijjjt-a (j^aLskJI 
>Vi (j-a ^)L£I (_£Al 1 lij)j*-a (jjA * 3 ^-*JI ^luLaJI Lai . cALj LILjjjII jlLVi'll 

^LiLaJI U^LA j^-ilil LILujjII ojqj tALa ^L*JI ^LiLaJI ,* iL"i >>ijj cjl 

£ ** £ 

AiJ (jLS-aL (JaL (jfsJj ‘(J^LiLl ^lilLall tiiSLa (JjLujj jjiiuli] Liajl <xal A-yuL (jS-aJj 

^laLall lilSLa (jj Lj C^aLaJI ^LiLall lift Ia^Sjoi LILjjJ Ojiluj liliS ^alaJI ^LiLall ^I 


Ia^LA ^^All Jsluajl! Sjijjai £-; La - j <_£a]I ai^^II _^a (j-aLkJI 


. f Uil C LLLI 

(_]_jJaal ■4_j\ ^a_Cjij cRSA LL.il L-aLJI ^ilLLail ^aAali ml ^iSI J ]° ilill ^aLLj ^C-Ajj 

jjLlaSI LLa a jig >Vnll a mW (jl a) sLLjI 4_jj V] DES ^LLj (j_* Lial ^LSIj 

# # 

^Jc. L-j^ac. (jaL RSA ^LLj ^jlJ i JLsl (_)£ j • Lj^ij LA^lAa A<jl 1 .' 7j 

Cu C 

uAIJaJj .(JLaj Cli3j (j-a iAUa] ^ajL La IaI (jS-a-a ^)-al Aiiljikl j)l a) tjjljikVI 

^AaiLkAij .RSA ^aLLj (j--a jjj LI~i Li ^»a L^,Aja3 Aju (.5^11 PGP ^LLj j)Jj) Li 
LILuijL <_ijjjj£JL/l <A_j^aj]l ■A-alAaiLuol ^Jl LaLjal tAil-J 128 (JJ-Lj La^LLa PGP 
lAA LiajJ (jljikVI L-L-a glia'll I lAA (Ji)^ Vj .(message digest) 
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Sending and Encrypting 


Exhibit 4-2. 

CjULuI! 

Jjia^ la. 


Exhibit 4-11. 


To: Bob 


From: Alice 


This is a Clear 


Text Message. 




AF51B220ZKN 
GJHASGD74G 
74G74G7Q474 
89130YWNBAD 


Encryption 


Receiving and Decrypting 



Bob's Private Key 


Asymmetrical key encryption 


> -- 

(Jjia -^1 4 jjI 




Hash Function 4-8 

□lljHash Function^Uij 


^L^V] dlLa-i^ajS lajdaij ^jl ^jlaJ (_£ll JjJall llilj A -s. i'n 

(j! tJjLa-a (jjlLujjl Hash Jl (jH II tIU .ajL^sSM 

. bja-jl ILLa-a QjSjjuo (JjLujj]! (_jl 



Simple hash function 
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: Message Authentication Code 4-6 


jSuillj .hashing j jc. ajbc. 

Hashing and Sending 



Symmetrical Key 


To: Bob 

from: Alice 
This is a Clear 
Text Message. 



4E1EAF51B220ZK 


To: Bob 

From: Alice 
This is a Clear 
Text Message. 


Receiving and Verifying 


i Ct-» 

To: Bob 

From: Alice 

This is a Clear 

4E1EAF51B220ZK H 


i "' VW' 

t 

1 A 

Text Messscje. 

1 1 

1 <* “n 1 

1 / W-. 

1 ->c 

' / ‘ 


\ y 

’ '"Same 

4E1EAF51 B220ZK 


To: Bob 

From: Alice 
This is a Clear 
Text Message. 

4E1EAF51B220ZK 


Results 
. Match?, 


Exhibit 2-23. Message Authentication Code. 


i U (Jjli Qjfsj 0*1 t Ajl_da l-d. MAC (jl 

aAM CjIALJI tjn.it .ojUa-cJIhash functionJi« 

jjj jjall (j-- 0 dll A jJajCjJjIlJ (J_3l MACScA^WU j j ‘'"ill jn e \* \ 

(jl t j -n t ~Vi j. All dld£ dljLull Ax3Luj MAC ‘ A? ~ ^ flC' (JjJall (jdjj 

• AJLjjjII Jjj-Ldi] MAC (Jjifij ^lilLdl O-lic. (jj^j 


Hash-based message authentication code HMAC 
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Hashed-based message authentication code (HMAC) is the 
process of combining existing cryptographic hashing functions 
with a key. 

Hashing and Sending 


To: Bob 

From: Alice 
This is a Clear 
Text Message. 


Hash 

Algorithm 


ySHA^ ^ 


Message Digest 
AF51B 




| To: Bob 
From: Alice 
This is a Clear 
Text Message. 


Combined 
Message to Send 

AF51B 

To: Bob 

From: Alice 
This is a Clear 
Text Message. 


Receiving and Verifying 



U_fMD5l( 

r*\sHAl p 


To: Bob 

From: Alice 
This is a Clear 
Text Message. 


DoA 
Results).*- 
Matchy 


I To: Bob 
From: Alice 
This is a Clear 
Text Message. 

AF51B 


AF51B 


Exhibit 4-8. Hash function 


^LjLdL J 'O lAjLjLlJl JJ9 juaJ (j! ^^-A yljVI 4K joiaI] 

Lgili IaJ cCLlSjII (j-a wi'lj ^cJLx-a JjjbjJ ^ iLaC. jiaLlLa 

^lAili-ujl ^-3 (j—a^J AK ni«a\l oA^J tl n >>n A-lbjia (Jj1_ujj (J-iL-iil A_jlaC. J-JC. 

. ^jJaLiLaJI ^LiLalLl til i_ ^jAj ^ 19 >'n ill ^3 1 _ 

A_iLaC.j A_lai AjlJjia JjjSlj ^A& jJaLilail ^LiLaJlj j ;a Anil Aj£_iLua (jl_J lajLai Ills 

cA^j &\ j_jc- IAjjS-jLu ALs j CjLjLnll jj° jqgj (_£aJI (JJLil 

tillj ^jli ^jialila ^LiLdL JjJaAJ 

^jJ Lgjli tA nUJl ^jliLLaJI £-a (JjliL Au Igji ^A (jVI ^Jslj-aJI Aj ^ajiluj La 

jja .‘"ill ^LiLa J19 Aill lg.aAaLjuiim <Jj tig >>i3*i CljliLldl jjLujj] ^jjLLaJl oAA ^Aa* 


3a-ljuU 
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(jjj (Jl k diV I AjjjJ A 9 >^11 (jV! OJ_llij ^aJXkjJj 4_lLaJtll oA^J lllljdiC. gjjjjuJ (_£A11 

• Ajj-d' 

l_$\ i ^lal ILall jja dill alAdLuill lAjia joU ~"n - a3 LgElii all x a ^Jill Ig m<n dl lilnll Lai 

•AESj DES JEa <—lUxjjIji. ^lA dL aE 

a !jg judJ (JjjJidEU (Jlj_l V 4_il ^g_A 1a_A jjLjuoII ^Oai ^^-3 4_uloI| 4K 

Man in the middle ) J^jll ^ l$a 1! J^jll ^aj ^j-^a ^AddL 

• (attack 

Lgda (Jj£l jmj liali 4_iaVl £—iil_^a]l (j_-a eA^lj ejLija ^.jAi LaAlc. Liili (J_ili lM* Idli 
c^ij-dl IgJLajl o^Lc-lj 4_jgil hi*n 11 dill Lid I j ia di (j_* (j£diil ^^-aj-aull Lg^tiLa 
lAA dLJ (J_uij! C^ISI (jli dll (j-a_dai (_£A11 Ea I^A Ig >>i9*i ^j_lai ^dlll A K dull' jjEl 

?<*-a (J-alatill Aijj (_£.ill £3jh 11 jA ^-aj-aidl ^ELall 

dl111 (JEdiVl (jlaljlc-Li ^jii (j^pdall (jl jA dlEa^gll (j-a ^-jdll 1AA d l.'W 1 E 
(j-a EilAall Ada IgJEuajl diljl ^^lill dilllid! Ad.li dn-Nj cljj-all (ji_ij 
jlg^. ^^Jc. Ij^j- 0 dlili Ij^all Aa'w-iB i jSt> ojlgii. (j<a Ijj-all ^11 j& 1 g 1 >ajlj Jjj-all 
^-ilnll 7 ~~ELall dl ill (JjuijJj dl lie. JjlE (jjJidall ^>jdi tdldjll (J^lSi ^_g-3j L dl 

(Jill ^g,313a-11 Ijj-alE (j-ialdll ^IdLall ^g-lc. (J_a<aad (jl (j-a VAi tAi (j-ialdll 

4_jli t (jjlid-all ^g-il*!! ^ElLalli dill Lull j;9 dll ^j_si Edlc-j iA_iu a (J-^lslll Ajjj 
. dlli Anij tAi (^saldll ^ tidal! ^lAidiuili lAjiidi dla (j-a jjEd 


Hjuj 


(jjldall (jld c Ijj-all ^gll dll (j-aaldll ^gdi*!! ^liLall (JLuijl (JjLdi EaIc. dill La£ 
^gll <j jj-saldll ^gllull ^liLall <da VAi (Jjojjij cAic. <j Jaiisuj ^liiall lAA Adli_uj 
Ldail (jjid-alli (j-aldll ^gllxll ^liLalli dlEliill ^jLIijui Ijj-all (jli ^lillij cljj-all 
dlli Aiuj tj^j^aldll ■d^.liLa ^'.dljoili lAjiilui dl3 (j-a j;^di i >a Jgj'i~dall (jli ^gllillij 
ajj. x<al ^ai_i (JE-diVl (jEi dlilj IgJLuijlj ^gdlull dl ^.1'iq.aj lAjiq dAl ^j-Si 
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(jjlL-fljl ajLL (j! jA £_alj]l ^g-3 A' U ~s ) La (j£J 4 £-a 4 > ,0 

cJjj-all (j.J-Jj 4-ijj ^jLill (JL^aj'Vlj c A-UJj tiliu JjVI JL-iajVl 4(jjljb^aala (j£)Liaua 

jAj 4-Ijjj La ^g-lc. lillLjj i'ajL^liA ^>JC. CllLLnll Qj£j L).-^ 1 ' Ly- 1 * 

. Ajj-LI (j^J AJ-iliLa]! d)Lajla-all LS lc. llb^ajj]l 


(J aLijj ^jj-jjil Aj-jouIL Jj j-LI Aj-j-ixkjai J-aLij A_jL ejLi*J Jjjj <jl iiLj£-aJj 

1 g x^a«J £_<a S^joiLxa (jLiialiJlj LogjL (jlijiall ^Aj2j 3 4 Jjj^aiS AjjoiLL A.b-^aA.,2: 

liLL e-LLI (^-Sj 4 Jgj'iA. <a]| jl^a. £--a (jlLSaliJl: ^J3 L^_j\_J Laiau (jl (jj^ (J^axall 

In) >lij]' L_Lxlj A_jj 5 L ajq juLa Al]La_jl*-a]l A_alL ( _ s -ic Jjj“i A * 3 ' (jLa 

(J_2kjll jl L, 'a-j>^a.'lLai' JjljiaLj 1.1A ^ ■«_>.>: i_LLjui,I' L-gJj tL-a^_llJ 

^gAj tA-ijjjjLW^ AllL'g LSI ^g-ajuaJ ^)-al ^.liJLuoL A1L*La]l a.lgJ (JaJlj.iaJ_uj^]l 

.^jlaLI ^LLalL jjiLull Ajjij ^glc. d-aJsu lxiaji 

U)A^»j cjULJI 4^-a (Jjjjj 5~6 

L_lIJ ailj l"< Jj±i^\ (^g-lc. (j-aVI Jail 4tJ-j]a <J-J3 (Jj-Sl *■"' 1—a£ 

Ig Kg") >L 1*1 JjLuajll ^jl (j-aj Aj Jo-salj (_£■!}] I cjjiall A U^iA >‘ii (j-a IgJba A£Lj ASJjIa 

tilJj jlLali] ■LaWi m,a\l A_iiii]lj 4<V|J!j-' a “A) L “' mL Lgjjj A_La (JjtaJL L-ajL A_La 

fJ L ^jL! ^.(Digital Signing) 

l_£jj£ a" ua>. ^j-a aJLjj^II aILs* (_jc. jialSI (j>>»j) ^Ljjj (JLjjjL ~j' q J ‘a 

i'Aj (j^aLkil ^LlLall ^aLA'~i jujL -A_gjL^_lil LSLujjII aAA Liu jl o^i-jaus 

^LiLall ^'■I’N.'lxjjL IAjjLuIj tilflj ^J-L A_jlil AJLui^)]! LaAj&j 

~ lx j Ajli a_^j!u]I LILujjII cLa j cila q £. LLi 

.LILuj^I a Lb (JatalL jA JjL-all (jL 


^LiLaJL LSLujjII ^jLjuaj (j! V-l_i3 tA j-luLc. A_ilaju ^aj-Li LuL LiA la 3 
j_A ^j-3-J JjJ)_aSI (jli V] Lg-SL JLa.1 (j£ud±J V A' L.)a..J tAjj—alS lgJ_*jjjjj 

(LLa ^j_x> (j^>A joi <jLxJ. j A'l lgj_i> ajjj (^aLaJI ■A-a.Via ^) IAjL-LIu 
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jjAUi JLxka oA_aj Ajj-all |_jA] cAjjj-Al] ^g_il*JI ^LiLal' >>iIj aJLujjII jig LA 

^LlLa]l lil Lqj (_£AJI aA_aj A_jV (J^LALSI 7 ~~LjLoil ^LlvLuilj lAjiq LA ^g_lc. 

^L'lLall ^lAaA wiL j ]° >'"31 iiLa (J_j5l3 ^^LL! q\ (j_A (jjA_£taA (jj-^-J ^LAILij 

.A judflj Ajj-a]l (j a aJjojja (JjLujj ^A Ajjj-al] ^llxII 


: (jjjjA oji-L.A SaIc. (jj^j A-It-aH aAA ^gi (JjLojjJI (jL Ljajl ia.aLA.jj 


^LiiuLlj A_ml.ma.L jLaj1*a]I ^^ic. A-j^^' A 3 is^J 1 aJLojjJI jLLA ^gijVI oj-a]I ^gi 
oAA iLUa AjU jj-LAj (JJ-ul lAjjiLA cLs (JA Aa.1 (j^A'n V ( _ s Aa». (jjjil *"» » 

A_jL (jjjjll C-LinS Ajj-al] (j-aLkJI ^lALaJI ^LVxluAj oja Ig judSj o^ajaujJI AiLujll 

. A j jaII ^gjlaJI ^ Vi9aUj jja.T‘31 tila (JjjgA IgjL (LIIAj AiLojll (JLajL (_£a 1! jA 


^LiLa ^gJc. JjLsjLU Ja &3 (JLk^aliVl A_}Iaj ^3 ^aAA A 3 a» 1 ' oAA (jlj ILjLuj v"lajjL La£j 
LiA (JJaj jSl. jj-aVI ^Jj-uLll (JLj^all^U A 3»<31 djljLnSI £_a ^AaA m 3 L_l 3 ja jjaLHa 

A-alaj S^Aai A KLA 

A_a.loLa wl \j (_Jj 1 _ujj 1 I jjLLAj ^ajqj m Ajj_All (jl_j Lila Lijl ^-A Ai£_Luil aA_A j 

JjIaJI jA Ajj-all ^gJllxJI ^LiLLI ^LiSLuaIj lililS A-Lls (JjLuj]I aAA (jj£ (jlj (j-aLail 

Ajj-a]l (jx ajAL^a Igjl ^^ic 


?LLaa 3 Ajj-al! (j-a jAI >^i\' ^LiLall jA ^LiLLI lAA (jL> (j-ajJaJ (_ja 11 La 

? AjJalII (jjjj Alii.) l—flA^aVjA ^g 3 A mVi ^jJaj ^jjaa-a] LatiLa (JaJ Ajlj 


if* cjblgJill aAAj t(Digital Certificates) caIaI^I jja La 

Ajj-aL ^g_ii*JI ^LilLaJI ^jl_j Ag— ljj'i LLLa A_ijLU]l A_g.a.]l ^jLj (Jj-ii aJ1_ujj ,_j_C. ajl—ic. 

.Ia£ jA ^gjLli]! 
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To: Bob 

From: Alice 
This is a Clear 
Text Message. 



Bob's Public Key 


LLDKAWHG%# 

)@#IASDFLK# 

<, /oQ$4334SFG* 

RG543FG7770 



Remove Original 
Message from 
Digital Signature 
and Process for 
Verification 


Bob's Private Key 


LLDKAWHG%# 

)@#IASDFLK# 

%Q$4334SFG A 

RG543FG7770 


Alice Sends Result to Bob 


Exhibit 4-3. Digital signature with the use of hash functions 


L-Liuja. jljikl UjlfLal) ^r'Vn >»'i 

Aj-jujUaII 4_Lojjl_^aJI jLjukj VPN 3 oA-Jjj Ij 

l&jg > ii I 


DES, 3DES, RC5, IDEA, CAST, BlowFish, 3IDEA,RSA 
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Au-aliJ! 4£±ui\\ j Jlsu^M 


jjioiaH ^gi f. lj_UJ, SAc. 1 g \^C- ^^3 A-j^abkil A i>A-i jju3V' AjI^JjoJI ^AsALAj 

j>AA (J-aC- _ii 1 (J x^fl]l IaA (> _g_3 ^_jAa_jiuj, -4_<a\_sej\ <£j_Aill ^JC. (JjLiN I JjAjjj]! jl 

^aJj (J\ j>^ allV I (JHJ juj\j (j-C- 4jjjj_uj-a ^}_U*j ^gAill JjLiN I £—a 4 —}Iaj . La-a 

.(Jjj^jIIj j Jjjjjjll j jjq/inl' lAA CllljAa-xj Jijjj 

: jUftl 1-5 

^-ajuij (^A j VPN 4_iajA3 ^^-3 4j A *K AIxALojI A-jjilil' ^ A 

4_alfLi jl Clll—jLiJI (Jl—u^V 4_alxJI L_ll£l Ai]l jl <Aj_jjlNI <^J-Au ^AaJj-jujlj 

1 diLuoJjjjll ^.S'vj ) oAjAa. CjLujjjjjj CjljLiill l. aliu JjUjVl <jli ^-Aaji 

oj-^-2k' ^j_SJ oA-jAaJI CjLuaJjj!i]l ^'AVljujlj.^.'lV'lwi.al' t_3_aii\ ia_ujJ (jX 

4_*aj^>]t Jjju j CliLjaiJjjj]l oAA (JjjA ( _ 5 -i^j-a]l 1^3 AA AlxjjoNl j-X 


:IP Packets < Sjtin 2-5 

4_joijjjj]I eAA 4 _Aj ^_Aajj.IPv4 ^^-3 4 _juojjjj 4_jIaj ^jjoq] 

: 4-mll <±jIj AlilxUa3 ^j-a t- alb-i 
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IP Header 


TCP Header 


Payload 








Fragment Offset 


Protocol 


Source Address 

Destination Address 



fU.3-5 

IP CjoiJjjj <-ajj]L tj-adj 1—uli IP SeC (JLa tJ-L f-LnS ^JlaCLajj La-lic- 

La£ ^ n^i'i t"i;r j JjjLaill (JLiLI ^3 CpLajll (Jj£LaJI lg_j3 J.l*j i" n*N j oAj^. 
vj till J j ‘Cl til I Jail ^ w'u nLI (Jj£jj ij^aII (Jj£jJjjLI jSa. 

jj»'n >» i ACJI I La jli IP Sec t3^=>j Lai .TCP,UDP,ICMP q>L Li 

• 4_ iL^aVI IP ■‘LjoiJjjj jA j ^gic-VI ■Cjfall ^3 ^)jli-a ^luul 
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j IP 4_uUj)jj]| (j£. dLLnll jlLLa qajJslu 4_aJjyi (Jik Lai 

:<jaiJ 9 ull u*j Jju ■‘d.lNI uiliS <2Ujj aAjAaJI <xuall , _ll udJ d-ldll (JaaJI I Lb 

•<-/V V»* * —S # ~S•• • •* ** • ** l S g *• w »* w 


Old Payload 


New IP Header 


IP Header 




*- 


New Payload 

u,L^.j La£ L_4_i2kjj] fi.lJ.laJI 4 _jol1jjj]I 6 Lb ^--a dujjjVI ^-3 dll ga.j-all (J-al*jj 

^J_i ^‘L-aj^l 4_jt$j ^ds. j 4 jl , d\f I IP 4_uiijjj ^j^a 4 _jI.1j) 4 juLJI 4_d|jll (j (JjJJI 

.'A.uwll <UjjjLI aLb Igj JjaJj jj^a Ubjjidi j Iglax 
JLJL j (IPX Jla) IP J ojjLt-a (_gjdi dlVjLjJj^)J -idail d 4 _iL kjl dajjll (j] 
4_Lla ^)_JC. dVjdjJj^}J JL-aiu Lgjl £_-a ^ajjJI &. 1 A (J_£jj ^-a_ujj t_a j\4~iH 4 <Lr, (jLs 

# J * -v A\ 11 

dull jjjLfr ^Jh J djjjjVI JJC- I g L' V IP -1 4_bdJL 4_a*alk. JJla. dldb - 
6 La JJLa LS J& 4 _jjLJI ^jjJI iLLd dLga^l jV d_L j (Broadcast) ^ddl 

.yjjlkdl 

4_aii LLauLSI 4 lUr- ^_ll 4 la_J jLa. ^g-ll ^)J >‘li*1 JjLid/ I f.Luojl 4 iLr. ^j| ^ , >ilj\l ^j_,a 

f # g 

cj-aLI jV tj-aLI ^gJI Laid jj_Lj V (Encapsulation) ^lk ^dl jl V] . j£LJl 

jAj-^a-a jjj dljjjNI ^>J*J ( _gLll dVL^ollL I j-a daj^ j£- ‘LLc- jA _J-aSd jiilj ^_gJ 

^^3 jjja-lkdaja oAc- jl Jjij ^1-ldiuoL cjL^ -kj jla IJLa j jjjj*-a i_SlA j 

.4 jgjj dl3^1l ^^3 jsjll I Lb jj-a.laduJ 4dd (_J£ 


:PPTP Jliii 4-5 
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ppTP(p 0 int to-Point Protocol) ^l-iyLuL Ljj 

•PPXP NAS (Network Access Server)^^ 

dl jjjjV I j_jc. (jl_J (J1 j. «ajl £cj_&j NAS ^j- 2 J 03 laaJI 0.1A ^ La.ljc. 

^aVijouiSI (3JJjii NAS cjl A^aiiV' Iaa j PPXP La^Vi >n<a VPN ^.la^a 
Jij] 3^^ kilall (jAil! jla Alkali sift .IxJ . (Jj^aiLa]' A J>^rS >‘ii jU^] VPN ajc. 
c-.a-A A_3taljll a£j_joi]I j ~^y >uaSI ( j - a \ PPXP a alx a!' ^3jJI 

.VPN ^ 



(_5-a J-a*j L gJill j PO-VPN L3U. L_i uoii VPN ^ j] 

: ^gjsjs^all OSI ^^3 AjIHSI jl A_ijliill A q 
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Secure Shell 


4-Transport 


3-Network 


2-Data Link 


1 -Physical 


SOCS v.5 


Sun.NET 

TCP 

IP 

IPSec SKIP 
PPTP/L2TP 


ffl 

P 

C/5 

CD* 


3 

a 

fr 

§ 

3 


O 

CD 

GO 

CD 

O 

c 

c5 


VPN ClAajJajJ J OSI ^ jj^sj 


:PPTP(Point-to-Point Tunneling protocol) 5-7 

S 5 # 

aAa-1 >PPP (_J^SjJI Lat-uijx 1.1A j y* ] 

. L-iUall yc. ‘"'V'N'.' 


. Ascend Communications,Microsoft,3Com <> PPTP 

IETF Clil Jjjuao ' V].Win98 j Windows NT 4.0 JW J 

dlLaaldl (jLa LI Va.5S"i >n,a\l jjSjAjII j Jjjjjjll 4-ili J.laJ!) ^aJPPTP (Jjja. 

. 3' ' $ > -’•* J A-a V as 
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(jj. ClijjojV I J_JC- lij 1 PPP ^ajj J iq JOU j li» ks-1'1 PPTP ^ajA5J ‘EalaJI AJIaJI ^^-3 

^aljLSkJ. jujI J A_uiJjJj]I t>AA (Jj£ Aij ^alj j IP A_uiJjJJ J j v__L2ljJ-ujJ oAA (Jill I A -iLttC. 

. GRE(Generic Routing Encapsulation) <> 


E-ajj Jiq joU lilij ^a-J j IP EjooJjjJ ^)IaLlall PPTP ^aj-SJ (JjSJ-jouJI A ~1C- 
. jAj^slaII (Jj 3 (j-a IgJLaj] ^aJ La£ ^Laj^)]l ^Jc. b L« ‘ '-* ailiu j PPP 

UUj <iiEj 47 IP I_aj^-a J 1723 ^aj TCP Asia PTPP ^AiCLaiJ 

•ilEj j LANA(Internet Assigned Number Authority) Eua cs Ic. 
^La_juiIS Ia.3a_C.) A_aj EjjLII jA aJI j Cl)l_£_ 2 Lj-all j_JC. _J_gJ--a]l PPTP ^aju-1 (j-^-aJ 
.AjjLII jAaJI i. 'A (j! VPN ^aAa..a (jl (_jl ASlidl eAA ^aAVnin 

^-aiu Windows <*_* <ia_ J j a JI j PPTP o -a Microsoft Ek.^ 

A (j_-a j;a .'"41 ^ L'lLa JjLj—ujl j jfaLilall j;a AnU DES A_ Lajjljia ^ 1c. 
A_j]j 2 ^jj-aj]l IaA j n» 1. VPN ^a-lk-a (_£.2 ^AVn ii,a\l lg_J JjjjJ jj)j-a]l 
.^uJI 4 Eja-a -j~s _j?tS 1 A mN\l (J-al^ AJjLS A_iid 'ojiu 



:L2FP(Layer 2 Forwarding Protocol) 5-8 

A_SLiLi]l 11 a J-aajj CisCO Ejki J-jS (j-a L2FP jJj-laJ ^aJ 

a 

All <aC.A aJi3 CiSCO CllLaJiLa £_-a A_ixa_jJaj (j_C. LEkaS . ^ aaa^dl OSI ^3j-aJ ^^-9 
11 a jj*j La. L2 FJAAl>j Shiva Corporation j Northern Telecom 
^_2 (J-aaJI £.i L"' , jj. \ J_j PPTP (JEa ClujIlN^ A^j_Lu x ^ ^jauJ A_jl 

.ATM caILaL 
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£_-a A aJj oj—pJ)! \ dj—ali ITEF L2FP J)\ J» a CisCO ClbaA i LaA_jc. j 
L2TP(Layer 2 cdl£ j Microsoft a!#jS PPTP JA£jjj 

•Tunneling Protocol) 



y-' / / / / / / /////// A / // // // / 


,- T • / 


T 


ppp 


Tunnel L2F/L2TP 


:L2TP(Layer 2 Tunneling Protocol) 5-9 

di j L2TP t- ill jud^ (Jjl a. jjj di xita IETF <jl-a <. al ,m L-a£ 
Ascend j Microsoft j Cisco j-a daly cU*l! 4-c.j^a 

Win NT <*-* UU Fa yud j US. Robotics j 3COMj 

•5.0 

Jll-a IP (_g2c. 6l_xua-a]l J-JC- J-lij L2TP ^aj-SJ PPTP £->a JLaJI jJb La£ 
L2TP uj j La£ yiUkA/l IP AiLdVbApple Talk j IPX 

•Sonet j ATM (Jii-a ciujlj^U ciiKyll yp. VPN JLadll 



IP(@LAC,@LNS) 

L2TP 



PPP 






IP(@>Nom,@Dest) |Data H 


@IP = Dest 
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:IP sec 5-10 


( _ g Jc. CjUIlJI A-jLaiJ A-ai>_jAa CllLijl£-a) a CllijiNl (Jy£jpjj2 AlAlal jA IP SCC 
j)X. ajLiC. jjt> IP SCC (j! C‘ U3k jifl ii ^aUaj j jj-lflAali > a.all jjjjjj £-a IP (_gj'1 > »i <a 

.A_2lj ^ajl ^ic. VPN ^»jAil A» i'l~N xi jjjbuj ^^21 (j-a A r -J^'S <a 

:IP sec Axjj ajL 

jjC- A-\a>jjil Jjli A_jl La-a A-jA-llaill IP A_jujJjj1j IP SCC A-ajj Iajj 

JiLa* VjjI*J 1 ^J)ll Jiil ^A'v.ljuai ^glill Ig >>iq~i CLiIAxaII ^'AaJimlj diijiNI 

IP _1 LsliLk ^gJc-Vl A-iiiall <^-3 'ojLxLa CiliLlJ lilliA A_jl ^Jc. (J- 1 -! l—a3j (Jj2jJj^)21 

• Ult UDP jt TCP Ja, y?2l 

Cjlilnll Jj_^aj (j-a IjAflfcj jl IP sec >>i<al £t-a_ujj (AH) (jjjJjall A_jujJjjj 

. Jaflil>a<a]l j Jjujj-all dilli i_Sjla (jxa (JkAj (_$\ (jjA j (JjAxj (jjA 

4il_jJaVlj CjliLnll A_<aj^)ll (j-a ^lJaflll lAA J<aa.J ^ESP) _jS-uia]l (j-ajM J-a^Jl 
,'ojLulA A » U^l ^3 ^bllLa TCP) (_g-ull-uNl ^g-lcA1 AiJall (Jj£jJj|^)J 




La-a j. VPN frlij ^3 *LaAa2uuill CllLiajjljiJl j CjjJSjJjjJl Jx-xasll lAA (_yajC. 

(_p3JU ^3 — JaLuia J£_iiJ 1 g laC- A_jjl£-a) £_xj — ClAj£jJj^)j]l sift j)l AjiaaJLa L_L^J 

IP ^aiVi > li ) A3 bllLaS VPN -1 ( _g-ic.l (jLal (j (A'll liljlAAa J^joU J-aju A3 ClAL^JI 
^Ljj IP sec j (jjiil! p A CjG" Jjj-aa-a L2TP <jl L2TP £-a sec 

. Jji2j j Jjj jJ j)-a L_fljUaj]l 

i .l_nl CIlSjII (jl_a». A_a3 A_^.tLall dijjl ja-11 j VPN j)-C- oA i-n Sj_£ 3 l*'! 1 ^ Ai A_3j jjVI 

CaVI -a j A^al. W'i m V J t .xaSl (Jj_a. aLajWPN 21 h A_ujJAj 

# ^Aj-aj ^lA~v‘ni,)| 
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AjjJajjpaVl Aj^aLkll a£jj^I 4_iij 


IAjLqjjjujI Ajjj Clu£ ILj Lqj 3 iill ^Asj (jl VPN (j-a Ajjll Lqj VPN A_iij (jl 

A3 VPN *—it jUjILq jl Lo£. Ig . >i» n A^jjo]l *_AjI£-q (Jjb^al jl A-lin-oll ojaII A-oAiJ 

^ { f 

^g-3 LjjA ^^-LqLH J-olxSI l_lxL j , jl <Aj_jlj±jl ^ du£ jJ LxuS 


jjjjj AaLqC. j A_mll AjAsa 


j (jjiil! i-Ajj jjl ^Jb jIjaII ^-3 (J-qIjxJI ^Jbl jl_3 A_jjljjjall ^Jsall A g -yj j-a 

# £ £ £ 

A-J_jal3 VPN vAjLq-.-~S.Xi £_SJ j_j| j Jja_jau]l jj-liaj (_£jJ_uj-Q (_$! 1c- J ^g. gJLU j_jl 

• c ^gAjj jJ J VPN 'Ajj jJ o j.Wi-sx A-qKj J <_SjiNI Cj|j,, ig .. a . :iU 


:4_jjLj*JI j JjiaJt 1 — 6 


I—fljUa J VPN ^Asu-joij jl j^; jjjlii juj (_^l jl_3 A_lijloll ojjill g. 1 Tn >hIj 

j^jj-luS ^g_1c. A_.i^.^jj A_xj^. J-JC- jl i-iLj^a aLjc. j_ic- A a^Ux jja All' j JjLaNI 

. ■‘LqIc. (__jal^)C. I 

jlAa. jl ^AjAq£ (JxntJ jlgji. Jc. jli A_iIaj ^j]I (J^JI IjAkl 

^)jj£ A j jjA . Y~i 1 > >i jlgjaJI 1-lgJ ^»L*JI f-l.NI jV jl^-oJ A-aSl^JI j-Q jfn 1 V 

jjLLq]I jV Aliij oALlj 

(AjI -iLoC. All Ijjj A_N AJb]j-iaLj jLgxaJ! AjIj-q Allgi >>n — VPN -1 Aj_jou11j ^g-ujLuNI — 

. Aljjla 'ajlsl ^tllx-all ja>AJ Lq I Ah j oALx .q A-jjLoLa. 

# # 

Iji J jJJ—UJ ^tlL-X-Oj j g ~S XI J (J_AxJj L-AjAlQ jjl g ~N V. _ 1 U-Tn VPN (jl—2 ILj 

. ?.IjIj VPN a LiLSaj Ajili ( _ 5 -lc- A.xxaxxa..rALQ 


aL_jAJ)\ Aixi ■L.illsJI A_jjjxill ( ^A j ^jLixJI Ig xA3j V C5^° ^Aaj 

^jjjJAq£JI (jAiLaL gjl A-laljuiJ ^jiaiLAj VPN j A^JjolSI (_g^ c - Lit 

^g-Ljj (_$aSI ^ ‘ >ij\\ 'AAjAa.]' AjLu!A a-LM ^-q (J-oLtiil AjIaj. xalj-Q 

A_iilaj ^3 (J-ojc-il ^Aill jLgjiJI aJilx.1 ;L~i . .A A l.l~s. A qKU Ajjis^olt JjAjsJI jjxj-Aa 
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j A nMl AIiLLaju pj'a'il Aaa-a^sa LiaIIc. Aa-LLa cLli^S U A, uh'iUj Lai 

.JaiuJa]' j 

L_flj^a]l ^ja ^^AAJ j .Ai^a^LI (Jjl^Jl ^ja j,,nfL ^glcL <LL ^ASJ -^LiaJI IaA (j! 
^gJLLL j (J-aI^IL jl ^ VI Jjajj i. 1 >'jll (j_A Ajl jj Lg_u£jJ Aju <AjIAjla]I eAA (JLa 

.?^jAall Jjtaj IjLa 

:4<aJA\ f ILkJ 2-6 

i <1N A^jLLI (. LLkl jA VPN LI ^Ja Ajc. Lgjlc-l^-a ^g-LI (JaI^jLI ^aI ^ja 
^ ajjJl i_sulaj 4_iLaC. J-^C. ej_Lall aAA VPN ClujoN! (j£- VPN 

Cjl—iS^Ia ^jjjl 'hm IgJAii juL j 4 jlLao$ 1 (jjjl_i*Jl ^g-iaL aA_jAa. AllL-uaJjjJJ aL-jajV 1 

■ oAjAaJI CjLajjjLI ^g3 VPN 

jl^A. (jljAc. ASjjjaj i'lua>, (jjjliaJl ^A A£jaLI A ') > ^ijjj (_£a! aLAiIa]! dlLa^ls-aL ^ja 

jl jlAaLl (Jja. <—flllilVI A*J AOjaL AIiILajLI ^ja ^)-uL-i ^LLL jj’jL'i.aj ^aAa-A 

AL£_iA ^ja! AllAa-Aa aL-VaII aLjALI (J-jj-Aalij (Jj^ ^£.j3jjia Allis LL£3 (_£jlLI 

^IsjjI ^»Lai A l«ag a ^jjjljaJl AjIaC. ^^3 AsLasaL AjjILLI ^LiC-LM (J»^ ) A^. ^gJ) 

. A^JjaB ^LaVl (_£j1uaaL 

: qia^\.^jla\\ Jjjjjj 3-6 

A1iIjA_2uJ 1 _a ^_ 2 klj j_A ^jjLaAaL-juiA]! Jj-jjjj ^jLi Ig_ uAj VPN ^g-L) Afll _AaVL 

# # £ 

-LaJ-laiAill ^^-3 LaIa L|jJ (j-ldAaL xa aSI £_AajJ L-LxL j VPN LI Aiij ^LaI A-a>.jj3-aAl' 

j qiaAsA ^'^11 CjULaj o AxaIL j Jj_LjLI ^aA -sa £-3ja C-i-i^. ^j-A A^j_LL 1 A_ml 

• ULli VPN 

Aj31£ A )N a 11 (jjA.’iyiwiAll AIiLLj S^c-IL jli Alijljjjl£ (Jaju ^Sk^Ll ~~j]■» ■ ^ VPN 
(J^.1 ^ja V A1iL^Jja£) ^gJ) l^Jlajjlj jLjjl ^-a Lai aLjALI (JaI£ ^jAsAL 

^.i,Aa ^1 a^iL-L aSLJI saa (> _g3i jj^A-Ll ^ja cIiIaLsILI 
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4 jr,' jA jLlkJI (jli 4 A » >|\1 J]lc. VPN Cl)l£jjli 


.'if.li£jl J]lc. RADIUS dlLa.lkx 1 ^_j 3 ^aJ ( j]l OASIS (Jj-a 4-ak_iJa]l 


^cjj-a l » <aJax ^ (jli VPN A .a S-i 4 (J£ (j£j ^ Cj] ^g-vJjLujI (J£joiJ • AjjuoLuN 1 ^iLajll 
-4^i.a ( Jj A^jjai jljll j A^jjoi (Jj U_?i3 JjVI: (jAujlajjl (j4^3j-aj U° 
^jjJjaiLoil (^jJ^jj-aJ (j-a ^cjj-a l* ^ (jli VPN A-aJajl <_]£ (j£l) ^ (j] 

ASjjJJ —Jj — A^Jjal J A^Jjal - Jj —(jjjj (JjV I 


£4>*j Ja L$Jm (JJj -^J ^] (_>J (jj* U£ (_U' 


•4 <ji?. ^Jj 4 < 


vlJjLaSj J C^SlpI -jVnc^jq (jtilij JJ 3aLjJ 
jjjjVPN (J-aC- 4_3 ^a»jj (jl£-all jA jjj-alill ^3 ^gjojLuN I JalaJl J 

# js 

. JalsJ! lift JjAsu ^^3 bj^ (jJ-iJI J-lJl i—ixL La lillcj (jj&ill 


:41 a£ - Jj -&Jjj 

AS JjJiu 4 lalLa]' ALalj*_i\ ojill (JL-sul jA ^jj-ajlt 1.3A (Jc. Ic.jJjoi AJiLaV I J£1 (j-a 

A^_a* (ja i_a Jail (jV Jaia (j^jJI 1 _aja jjLM (Jaliiuo RSA ^)4C. AJJJI 

-4^i ^ \j—4I - .' ^jliill ^ J^'iU LaLall (jj Laa A^jkoll 

jlift I 4_a.lk jl ^AaJluo-aJI Ja (ja (jaiujjJl (Jill 3 ju (jc. 3 Lull (JjjV I Ja-aill 

. 4 W'lwiall 


(ja JjU >. _ llLi J4C. ClajjpjVI (Jj (JLv^jVI (jjilujtij a3kH‘ a 4 ]' ^ajj -la-ail 1 1L& ^3 

jja. J&VPN 0ali)J lU* 4 NAS ^3a^aJ j fr a ^ a l l ^U^j l UjAkJI 3 jA« 

(J1 1 I ^)JC- Jaill JAjIG j vllljlull Jjiiilj ^ajj j (Jj-a^a]l ^AklLau^l 

• jjkN^ lg33A Jj CllljlJI J-iki] 

Microsoft (> Aki^a]l PPTP JJJjjJ luuH liA J& 4Jlab' jjii (> 

jl^A Jc- ?.v_iaJI (J-al^ £- - ^aj 4_j\ j oj^J 4 -Jjuj (j-a J J1? * all 

£ & 

ojija (J^J 33 JUt-all (jj (JjA® _J4C. Jl2k Jj \AN 1 ^2 bt^ijjj ^ja-jLa-a ^3kJliaua]l 
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^jUalll ^3 1 ilmj ^ajL pJ J * C5^**.' LS^ 1 ^ JL^jl ^)JC. JiHL CllLLj 

. 1 * * i >>j ^J] Jjjtld Igj (jlgjjuu V a .la] CjLLLI a Lb 4 -vil» a 

NAS JjS 3' a (jxiajj-all 3^' ^ajud<aJI A^Jjoi — ^gJj — U_?i3 Ja<aj]l 

j ^gja.a]' NAS (jJJ La jja^a^-a ^jli (J^jJol! ^3 LaL AJlaJI a Lb ^gi 

. (jlajV 1 AaixJ Lis ^a. Wn>ia-NAS 4 \ t ^ij Lai 1 1 »LI NAS 

j ValaJI -LlA LS^i CS^ 1 ^ a-.ll^ 3 JL^ajl ^jjjJjujLj ^al^lLaa]' ^ajL? jjjLijjoi]' I Lb ^g3 
Igxllaj 3 ^ VPN a UjL 3^ £• Ljj ^ajL ajjlj ^Ll 3jj-a]i I Lb 4_uii3 3A? 

. a-jaLuia]' 

jjLLiII HjLilaC- ^ajj a lie j 3iiii <jl^_iSI 4_iaai jA LSl^JI a Lb j_g3 4-a3iJI lj3-a (j) 

ILL;] Ja-oill \Lb L. in >ii . alaLmali jl^a. lAA a ,fli^..,i ^Lulull lilSj 

4 Aax II a Lb ( _ s -lc. ■LaliaJI CllLjAa £-a ^LjV I ^-iL* 4L-1 xLI f-lj-i-L 

. VPN j_g-l] (Jjj-*ajl^ (j^^aLuo-aJI UlLj^J bbJjjjj j 



:4iLuii ^Jl AiLu^i ^ 

(J£.JlJ Vajli ^gliLa ‘‘‘I' 3^ 3^^ U S L 3/'^*-a VPN allaLx4 lie 

. UlSJj-a ^^Llbb S 3 JC. 3' ‘ ^’'V' 3 IL A La-a ^)jLI lil'l 19»j ^-X-, Vi >ai j ^aiuaa 
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Router-terminated I P.X 3-7 j< 


1-llJ ^jjl (JIjjoJI laj j Ajjlj j-la. jl ClL-lHallj ^ ij-aill IllA (jl 

. ^g^lilj (jjl j Ig mq'i A^jjuol] ■‘Ujoiillj j <d.j*all AjjouIIj VPN (JL-dl 
VPN (JLdil ^9jia ^9 4_mll (j! (Jjill ■‘dllLall dljliiJI ^ajxi±t.uj j)l JjS 

C9 

JL^Ij t—Sj-la jli lilijll (3jllalll u_ljiLj ^ils AjjliLa 

.e^sll 

Router-terminated VPN 6-4 

^jki llua. IjI^aI! (j-« ■4_L^ ^a.lsj dll ilicN I ollA , LilLa. ^dVl jJjl iimll lift jfm j 

(jl AJliJI ollA v _ iV^ll (j-a j ^liCull tils j jjLIuIIj jjlaN! dULaC. Ail^J 

- cj^II liA £-a (J-al*lill ( _ s -lc. Ijili ■‘dj-all (jjSLi 
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:Firewall VPN 6-7 



Firewall \ P.\ 4~7 j< »< > 


J^" 11 J ‘-“V'N' j AjIa- 0 (jjj q\ 

^X-Jj ^jjj^ frail (jj^A (jfrj Aljaxa]' j ClljjSNI 4fra* (j-a 4_iLj<a J A^-blil 4_fra. O'® 

4_C-jJ)j-a 4^1-ii <JLl 

:VPN ^ jVUia.1 Ua j (De-Militarized Zone ) DMZ 

^Xoil 

Ajii.1^11 A^xil! ^ A^jaJI (jl e*ua, jlill jl.ia £-o VPN j d j{)2\ d' 

ja j 4_}3 j 4jaj-<dl ^)JC. (jjsill (JjjjojjJ O'® J jl-laJI ys£- /jj-aj-ialu 

. 4^)aJI o^A 

# # 

(jjlluj J* jW l3^>® J^d' Uj^ <-£>=d *>® 

. 4_ilifl]l 4_i3 LaJ ^ ^ a LuiLuil 
»* ** • 

IjA jj£j la Uilc. j VPN ^a.la~a £*Ja_jJ A!£.jguil aJlfrj bla. d' 4*NVI 

# 

. 1 i-v *j\ ^.j^aJI J (_^la. 

DMZ -1 Ajjoiiilj VPN i" n-v /j-a 4_ajJiLaJI ^iil U ^*d ^-i*-iajJ Laj2.VPN j 

c-lfrijl Jaliil 4 a\"iA A\ t " 'jjl H 
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DMZ 


T1 

<D 



Ql 


'S 






^ _ j Ljifi \ <i (_ a ^ ^\jLJJt 
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jA\ 




iqAAI ^Usui IPsec Jfc flAil -1 

Kernel module j sl^l! ja JjV' ^1 ^ *122 j! 

called ipsec_tunnel.o 
Ipsecadm j 3^1 j <j>uJI CjILIjjjI SjtaV ^321 j 

: (Jj jugoj jjJ (Jjy-ug]' oljj kernel 3 l_i^j <jI.ij 

modprobe ipsec_tunnel. 

(Jj*_lauj b~'_uij ^j_Si j ipsecO a_j <£j_cu jL..£.. 2 v ljjj_1 <jVI 


•ifconfig -a 
r^ikxj ipsecadm sliiS 

.(SAs)y>J (j-aVI CllUajjjJ kl]3] J Aib-ia'y (JjVA 


.l&?.ljj ^aJJ ^^21 JjlijVI bl]j] 

: gr^' jiA^' 3^- l> 3^ 

: B j A (jJJ Jaj * 


j <aLiaV 

*ljj Aijjia ^JjolLuj 

Ijj .l^j 13 


.bJtill ci3j-ajjl3 j oAA *—Ibj 


Host 


A B 


Public IP address 1.2.3.4 5.6.7.8 

Private IP address 10.0.1.1 10.0.2.1 

Private network 10.0.1.0/24 10.0.2.0/24 

l^aJI j Security Associations (SA) 4 j>3I CjU3jj IPsec j] 

__ JS 

(J£jolJ a.l2jJ ^aJJ j (A B) (JxaAa.21 (j±i CllljJ-abbl ^)-=J LojujI 2^ iaJ 

ss # 

IAjjjoJI (JXJG* JIa ^C-Aj Clu 32 (j-o lily-a LaSj j IPs 
Security Parameter Index(SPI) 

. CjLq, 1-S .41 ^j-a (jjj SA (j-a J6L ^-ajujJ SPI 3 (j] 
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jA Jjjjj J J SA Ja-aj LS lc’ ^jlialj yS SA ^gJc. Jjiuj S-«.ik. 

# # 

. Uiajl <4-ojjl^kJI j 

: JUI SAlii^j 


SPI: 

0 x 1000 

Destination IP: 

5 . 6 . 7.8 

Source IP: 

1 . 2 . 3.4 

Encryption algorithm: 

3 DES 

Encryption key size: 

192 bits 


: Encryption key 

Authentication algorithm: SHA -1 
Authentication key size: 160 bits 

: Authentic ation key 


Authentication HMAC size: 96 bits (default ) 

kljg >>n oeLuajj (j^-a-aS' (j-a J ^LiLa SA f-ljadlj (jl (Jj2 

ipsecadm key create command 

IC-oLal' 3 DES Aj-ajjb^J ^toLa f-LauV 
the file /etc/ipsec/demo.ciph.key 

: yin 

ipsecadm key create 3 des -file=/etc/ipsec/demo.ciph.key 

: L a\A\ ^_a oAjSjJ <j£»aJ ( C_ul20 (jjjJoC. (j^a (j-a i—dydl (jjjjolt ^tlLa— 

etc/ipsec/demo.auth.key 

: _j-«V I Jjjt-iluj 

ipsecadm key create shal —file=/etc/ipsec/demo.auth.key 

Ahlui ojj^lall SA -S' e-l&y ipsecadm SIAM fbVnM jV! Ujl£-aLa ^■..i^al 

. jjibulS ^.iViwnwi ^1 jjLiiS' ^Lajjlj^ cipher option- 

.(jjjjjlS ba.iVn^" bixjj'jiJi' j^jrdigest option- 
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fjmVI j' viiua. ^naUJI cryptoapi j cipher name- 
^ (jill Crypto API jl-i^l Jc. .iciu IPsec 3DES j^L^I 

.4 n,^.ni 
* «* • 

(jl£ 31 j 3des-cbc ^Vl 13* <jli jI-l^NI tduJ jl£ 13]— 

•des_ede3-cbc ^Vl 13* <jla jIa^I iiL3 
ja^ diaallj ciphers and digest c±*a tlu^ aUJ cdjlSLL 

: c33^dl 

/proc/crypto/ cipher/ AND /proc/crypto/ digest 


ipsecadm sa add 
—spi= 0 xl 000 
-dst=5.6.7.8 
—src=l.2.3.4 \ 

-cipher=3des-cbc \ 

-cipher-keyfile=/etc/ipsec/demo .ciph.key \ 

-digest=shal \ 

-digest-keyfile=/etc/ipsec/demo.auth.key \ 

-duplex 

IjjJa^pu Lajj 3 JJjJ (jjAj jjLlall ^kyiwil <j3] Jj^jUl ^jl A Uj\3-alj 

,^ya^\ (j! (j-a ^lill <11*311 CllLaiv^Jl (j-a (J13 joi 1 o^C. ^11 (_)iijll .lie. 

(J3 Juc. SAs ^^-11 L'iau Jj3ill £.1 _jol 31 j]: ClllyLaljW^^ cl) -0 ^-^LoU 3Lal 

(J3 *1 ~1C- (j_An djljl.lC.1 (3*4aj ml £jl_Juoll <jl kallHa j "^.*1 “S .a (J3" 1 SjJa 

— duplex -11 ^AsCLaLj jia.1j SAs ^j-a «. Lijl lijl£uAj a ^ j *. 

: (Jj».uuj (j±n y $\ SAs .11 <jjj! j 

ipsecadm sa show 

j, 3 lij^l J^-l 3 -* JLia (JauJ IPseC ClNj-Aa. J-^l >> n SAs (jl 

. Jjaill £.Luojlj V] ^sj ^aJ jVI 


53 



Aj—joiillj 1&.") jVn 1 . 1 J Hawaii ^_ 5 —3 2 ILallll g.L-uijj ^—3 4__i]\u]l 5j_2aadl~ 

i B j A a\\ 

ipsecadm tunnel add ipsecl —local=1.2.3.4 - :A ^a^ 
remote=5.6.7.8 

ipsecadm tunnel add ipsec2 -local= 10.0.0.11 — :B 
remote=10.0.2.1 

| j|j — spi jLiik. ^aP-Vi jujI IjJji I jj oAjAaJi IjjlS-alj j SPI -J-^-2 A^.Ls«. lilLiA (j^nl 

. C-XuitLa SA (jLa.'l'S'nii i Ala. 21 j (jli 4_dAaJiu4 

opLuijj (_£a 5! AiAaJI JjiuB 2A 3° IP (A) £‘ J “A9 A-aLt-au clP^ Al — 

? Alii ‘ L ' 1 _ ' q A 3^1 

■‘Cia-joll 2j-P- (J_i 3 3-° '‘ [I J *• (j!A c ' As jAp i_A ■‘Aaj^j 1 >Vu LaAic. 

. Jjl^aJI lillj (jlA 2- £-Aajj J ^ ‘ ^**<dt (jlA 2- J 2' >.o'3U jl^a*. 

B ^aAia-allj <j-£alidl <£LiAall jWp <_s4! ^ ^aAi-a]l ^j-a £ Lull I IjJji Ijj 

(_^a!I j A ^Aa.31 jj-saLiJI (jljAdl 3 jA? >a ^3 JjjskjaII jAu^auajl (jlA^ (jA 

:10.0.1.1 j* 

ifconfig ipsecl 10.0.1.1 up 

^ J pA^ es-P lL.Aa A_ai 3 e-LLil ^-A 

• ipsecl jAp-^ ^>1C. <aJli B ~Aa.dl Aid ■‘U^aLaJI <£Lu!ul] A^akjLall 

route add -net 10.0.2.0/24 dev ipsecl 

AlAa. ^LiLa AiSjiil ■‘La^L*. V >." 1 1^..B ^sAL-dl ^Ic. 2*®^ (A csA 

lLL j A A<21 6?.ljaj) A ^L'lLaB j^cjoij 4Lil£-alj Lajj j B A 2- 

• 4Aal j Ajjjoi AiUjiaJ 
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j CLIENT (jJijiiij -2 


SERVER 


J#*® 1-2 

l$la jji_j-aV I (j-a (j-a -i£lull ^sjL (_L*J ^*Ilui<a Qj£j ( _ s ^^ 

IP (jljjc. DSL Laj uiujlNl a£jJaj jj^VPN-SI^U o 

CujIj 

La^ik, ALblill (juij ^jlu ^jLk ^g-lc- jl Aulc. diila (jjfL VPN -11 ^a-iLk o 

DHCP 

jlj^)-a A <al^j ^aj-aL aLuLI ^9 ujLu^. —U-il' (Jja^ajll $.LLaC- o 

lAjj^-alu ^ajL jl IguLa^al 4_UjJiij (JL-iajVl (JaLlujlu (_5-lc- ?.LLaj«Jl o 

. cJ\ 

VPN f jU J^2-2 

(^Aj RRAS VaAaJl Cimj ^tuaj VPN ulN L*ajl (JjLl ^LJl 
4 4 (Jj»flJ Aj£-a-a JJC- (jj^J j£lj 2000 jjAjjjll uIluT) £-a Alula Qj£j 

^Jjaill lift (^uajiiaj (jSLlj 4 4 2000 J)j^-L? ^alLa ^Ic La.li-11 j_jj£-alu ^ajLbuj 

illiSjJUa £-A ulljjllNlJ ^ajL (Jjj^aj £-a 4 i ^jliJl (J-aSJ ^^ic. DHCP -11 La-li. 

La (jV 4 VPN PPTP ^-.5k-a jl^C-lu La LllLa ^ ~jo*' - a 4 4 ululull IP (jljjau 
Logon (jjlujl ■‘Lal-lku-ujl 4- liuU Aj] 1 (Jjj^a_jllj -il-lcN! (_J^_uil ^)-UtUJ ^JUuaII 

(jjj uliVL-11 (j-a ^)2i£ ^gi ^.‘'A'nnij^a VPN L2TP ^ ^^ Lai 4 Lis j^Tnu^ll 

• j£l L>^' cjt^ y>“ (j-a AJ Lai ^aJlljiull 
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Programs > Administrative Tools > Routing and jSa.1 .1 

J±\ jjftj ^ Jc- t> ^Remote Access 
Configure And Enable Routing And Remote Access 

Next dufiall till TLjjj .2 

‘Ajj , —iU ^ La£ VPN A^aAi jLi^JI ^ikl S A3121 oAA (j-o .3 

r' Remote access server 

Enable remote computers to dial in to this network. 

(^J^irtuai private network (VPN) server 

Enable remote computers to connect to this network through the Internet. 

Network router 

jLpJl tiljjlj TCP/IP aj^.j (j-a a£Ij Adtull SAslill .4 

Nextfj jA la£ 

^aJ All (J1X ' jiiiJ Clijjjj'i I (JL^ajj lg_Laj ^aULII C-lVl AALaij .5 

Next 

(j-a (jjjljaJI AljjaJ jl oAA^-a (jjjljc. Aliui! Lai ^jLi’vfi eASlill sAA ^3 .6 

Lsr l^d' DHCP <»Ia^U Jjjil Automatically jLpJI J^jDHCP 

A^iL-oildl c.LLa*J1 

A-aAadl ,il ^Ac. ^_gAj jLdaJI jikl oASlj (jx .7 

(jV t JjIAiaU (j-a A .aAiLall Al)Lajl*-a]l A^_i^a ^j-a JjiLaAilRADIUS 
^ajLk lilLaJ (jj^J LaAlc- A_iLaVl (2jl2iala JfLj ^Aj jjAjjjll jJ 

Nextj^j' a£i2JI Jc. aj^jRAS 

Aj 2 lj aJIa. V] A-JjjjjJa JJC- ^^Aj DHCP (j-a JJAso aILojj (ill j^JaJ . 8 

OK jajl (_£jsd "C&J3 A£jjI ls Jc- DHCP j»Ai^ 


cJ-a*J 


Starting Routing and Remote Access 


Please wait while the Routing and Remote Access 

service on NORAN starts. A\a1; ,A\ j, L.", Q 


A^aAkll 


i ^ajLadl ^joiI ^ic. AlulS A-aLLdl AaLLlI (jVI 

4 dlijiiNI A_jI_jJ ^LLajdl (JIjSIujV aIa*JjujV ' (j-a ^Lall CluL^a AS Ia^jij 
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lAjjij j a^>.jJ ^ >A-ijjjSVI v“ 1 in'ill laA £-a 1 x )Jaj 

aac. C-Lunll -Lie. (Jj£jJj^)J 2^j Jj£jJj^)J aslLall aac. (_jLa iili^.1 ^ m>a 

Jjis aac. laA j^jSilj aiia 1 ^gJj PPTP aslia (^jJsLiiau (j^-aJ ai'ba 128 

a^jJ V LS i*_i 0 aasLj (jl (j£-aJ L2TP Jj^jJj^iIIj i (Jji*-a aac. aa^. la^. 
liil j^Jaj VPN ^»aLk, ^ajail ^_ul^J + ■‘La^lc. (j-® jilliaJI $.lilj jl —J-.a.’).I l alia 

a^J o is 121 (j-° ^aJ -_ua2 i-^-v (j-a-jVl (jjjjjLaiLPortS 

^ajl! v 1 -^' Maximum ports ^lal £ Configure jjll jJjSjjjjJI 

al^l 


3-2 


^aliv ^Jj JaJjajJ ClljjiNI ^a'a-SIwiV Xp~p jjajjj jlg^. jjg Vn ->.jika 

^ali. ^gJc. (JaajsJI (j-a a£tjj q \ uaau (JaajsJI jjgall 2^ (j^J ‘VPN 

Jkal lillla ^j-a a£tiilj i 'll j»l JL^aiiVi ^>jc. 2j^-2l lilLaj JaVPN 


^^3 La2 2^2 ^aJ ^aialiaiaJI ^^Jc. 

^jxj 


Terminal Services Profile 
E-mail Addresses 

General | Ad dress ] Account | Profile 


Member Of 


( Dial-in ) 


Environment 


Exchange General 
Exchange Features 
Telephones ] Organization 
Sessions | Remote control 


Remote Access Permission (Dial-in or VPN) 


(* (Allow access! 


C Deny access 


(JL-iajl ^j-a 2' ‘ ^*«*'V I 4 t->u.n\' CljljjaaJI JJ ^ajaiuj XP 2j-^V?^ (jV I 

oiA ^j-a ^glc- JaxjJal v-_U^j2^ A-2Luu aja^. JL^ajl 5.Laj] 2' ‘ ^*»*'V I aSaja 

2^1 A-ujLoiSI 


a**JI g>-» JL«aJ^I 4^ija JLojiij0 

2r$ c UoJI s^L^.»J yuX (VPN^ I S_JidJI flo i ^lLoU j C U*JI JloJl i^^ywjy JLoJlil 

.^a-T <>« 2 44 ^ 1 i jj*ji 
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jiiiJ oialill qa 

www.nor2000. com i) 

CujJJ) (VPN) *.£yuA> JLoJl ,*1 oj v 1UoLi ^^-wJL» JLoJl'l 

MOHAMMAD2000cjliSj Jl^aAM 'ig-J LajJ ^ 



(JjS Clijjjj^U (Jjjw=ij]I ^ 4 a ^ii.i ^j| ^_tc.jj gjill J' i. *alA 1 jikl LiA (j-a 
MNH aII^VI IjjjiJ Jtidl ^ L£j VPN JJ 

Jai ci-jULU i ^^oc- JLiaJl i£j j > j i JLiaj^l wits Windows J 

_ i£j& LL^JI JLoJ'J U 

j^i uJk;^o 

:LwLiLU JLsaJ^II I <_Jidl O 

y~^ [MNH 

# S 5 

(JU-iajl (_Jj 3 (j-a ■^9r k J' a tijj t 1 fli> a ^ -l*-a Qj£j (Jl 1 W<V1 12b Ijijiaj 

• # ^ # 

asp^ta^ ^)3J-a j*-a dljjjjlj (JLwaj) Vjl £.Laijl ClljjljVlj 

VPN^Lo] ^J2w<a IP jl i_SLLwauJI ^jail ^Jbj SjJaa. ^aI (jVl 

(157.54.0.1 jl microsoft.com t5li«) IP j' ^^? JI f^ 1 

212.93.200.130 


(. lg_jl olslill (j-a jSi.1 (JLwali^M e-lij (J-aj£l 

mohammad2000 2 l&' ^ ^iuo 
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4j >A Ltj 4 wll> JLojl 4^iA JL^jI 


mohammad 2000 

WAN Miniport (PPTP) 



JLufljVl JjJjU 


lilft lilliLa *-il-Jdl VPN ^aliLa £jJaj C—luia. (Jjdai) ^tLsu ^ail tarsi' jiaaJ 

Jldll J! 

(jLaSn <_JJjiill A^ilc. (j-a ^aJ ■‘LojujI (_5-ic- (j-adjl jjld J 11 "~*V' IdA ^Lisl 

jjj-a]l Windows Jjd.dll Jj-> >>n ^IdiLLd jLidl Lff ic- ^Ic. 


yU^I OljLo. 
(1$^ (f-a/wJI wljIdC-^l) 

: ^LULS 4 jk ^5 jjAAliJI 


Anjn JJ|>« yjJla« 


Windows <$JJ JjA'JJI c Ua—oJ y-ol f I d a »lwrt| 
UUUi (d>j lij JbWi j)' 


|yUo yj lo.J JUaiil ^ia£) GULuJI y^Jla* | V | 


PPTP jlidd ^JlL.1 Aj.ludd' ■AajUII (j-a (JL^aj'iM A^JjLi y_jj^iill Axlilc. (j-a ^aJ 
^aildl ^Jj (Jjuafljjoi IfljLai La£ Ail^jJ _jlj tVPN 

VPN^^u JL^Vl *i*l 4-2 

lilliLa ciLdl dliijji'JI A-adL. ^adLaJ (Jl ^’i\fl LlNl t^SL^j\ A-ails ^j^a .1 

Ai-)^a>. (Jl * aajV \ I ilA 
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VPN (JL-aj) Jc. lakjjj-a l^aj jijl ^^ic. 3la. > >n Ajuj .2 

MOHAMMAD2000 ^ M j*j 

VPN ^aLq (jljjc. (jl£ Ijjj dAjJijV! <_^3 (jljjaJI jLuj-a (jc. dia-21 JjIa-Luo .3 

# 

A wiN <iljudjV AaJlui A 3' ‘<a-)V' (_)^ajL-£tk <lu£ 

A a!£j ID 3_A-^ ^jjjI (jc. oAilj till ^Jalujjj .4 

Connect^ CjL jkJI 

liljl^j a£jAu]I £_<a 3 j j ^ a j^ j aJAJI Iaa (jj£iluj .5 


3^ 3-^' 4 


( *2ai2l (_>ij 


t*b-n 
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ll'j 4_i^abs > JI l "\\^\ (_gjLLa — 


i JjjLllj JJ9 tTi~~l\l ": ^1^)11 -1C- (_£^.j. J — 


iilLall 4_u£La i (jialjjll ( "CllLajIa-aJI ^ya\ j L. huLdl "l Jjjk (jjoLi.. J — 




ClUMl jja/ITl ala..V' q '. jjjALiiil L *j>t'^oJ ^Jblj Vg <a\i 


(jj&Lju ^kjjj L_iljjailj i JjjauaJ AjujIjJ i "a£jjoJ|^C. 


Cisco (2000), Cisco IOS Software Feature: Network-Layer • 

Encryption. White Paper "encrp_wp.pdf". 
The Laws of Cryptography with java code , by Neal • 

R.Wanger 

Introduction to cryptography with Java applets, David Bishop • 
History About Cryptography and Crypto Devices and Arabic • 

Cryptographer (Alkindi, Taher Algamal) 

: CluyijVl (jc. • 

• http://www.arablaw.orq/Information%20Securitv.htm 

• http://informationsecuritv.techtarqet.com 

• http: //www. boosla.com/books/privacv. pdf Encryption 

• http://www.itep.ae/arabic/EducationalCenter/Articles 

• http://www.techworld.com/securitv 
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4 .AujJajjjaV' A^JjoJ) ^ dlljUJI <jLa^. l Sj5 

5 . 4j,>. 'j"^ V \ r 1 4< n~,'\l Cjlljj£-a 

6 .( Gateway ) Ji^Nl ^ 

6 .( Client) ^-iiUaj 

7 .( Target Network ) 

3.A-ij^iajjjSV I CllN hVH ^Uaj ^AsJLolJ ^y> 

8 .dlljLull AjIaSl 

** • ** 

9 .JjlaN I 4 jVa" 

10.LAN-to-LAN tunneling 

10.client-to-LAN tunneling 

12. A j i '<~i jjilaV I 4^ u"A\ iJliLalikilujl! 

12.<ujL« 

12.(Remote Access Service) cf- itijil 

14 . a i A a\\ jotll 

14 .VBN Extranets 

15 .VPN Intranets 

16. isj\^\j djljj-aWPN: J^l 

17.Cl)Lajl*-all (j-al VPN 

18.VPN :JI 
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.(Privacy) CllLa^jkall 
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(Peer Authentication) L $j^\ ^ 

.jjiuiill 


.(encryption) j* l 

.(Symmetric Cryptography)^^' 

.(Asymmetric Cryptography) JjWUI t 

.Hash Function 

.Message Authentication Code 

Hash-based message authentication code HMAC 
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30.Digital Signing 

33 .Digital Certificates 

34 .?.jjj 

35 • • AjjJaIjjaVI j y $\l ^_ybalidl 

35 . 

35.IP Packets 

38.fljj 

38.PPTP 

38 .Packet-Oriented VPN 

39 . :PPTP(Point-to-Point Tunneling protocol) 

40 . :L2FP(Layer 2 Forwarding Protocol) 
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41 . :L2TP(Layer 2 Tunneling Protocol 

42 .IP sec 
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Firewall VPN 
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